E Shops Cart2

CVEs (2)

• CVE-2025-68890HigJan 8, 2026
  risk 0.46cvss 7.1epss 0.00

  Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in hands01 e-shops e-shops-cart2 allows DOM-Based XSS.This issue affects e-shops: from n/a through <= 1.0.4.

• CVE-2024-51648HigNov 19, 2024
  risk 0.46cvss 7.1epss 0.00

  Cross-Site Request Forgery (CSRF) vulnerability in hands01 e-shops e-shops-cart2 allows Reflected XSS.This issue affects e-shops: from n/a through <= 1.0.3.