Core
by S-Cart
Source repositories
- https://github.com/s-cart/corearchived
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-21149 | 0.00 | — | 0.00 | May 1, 2022 | The package s-cart/s-cart before 6.9; the package s-cart/core before 6.9 are vulnerable to Cross-site Scripting (XSS) which can lead to cookie stealing of any victim that visits the affected URL so the attacker can gain unauthorized access to that user's account through the stolen cookie. | |||
| CVE-2020-28456 | 0.00 | — | 0.00 | Dec 15, 2020 | The package s-cart/core before 4.4 are vulnerable to Cross-site Scripting (XSS) via the admin panel. |
- CVE-2022-21149May 1, 2022risk 0.00cvss —epss 0.00
The package s-cart/s-cart before 6.9; the package s-cart/core before 6.9 are vulnerable to Cross-site Scripting (XSS) which can lead to cookie stealing of any victim that visits the affected URL so the attacker can gain unauthorized access to that user's account through the stolen cookie.
- CVE-2020-28456Dec 15, 2020risk 0.00cvss —epss 0.00
The package s-cart/core before 4.4 are vulnerable to Cross-site Scripting (XSS) via the admin panel.