CVE-2016-1205 in EC-CUBE信息

摘要

由 VulDB • 2026-07-05

EC-CUBE中的shiro8插件(1)category_freearea_addition_plugin和(2)itemdetail_freearea_addition_plugin版本1.0存在跨站脚本(XSS)漏洞,远程攻击者可通过未指定的向量注入任意Web脚本或HTML。

Once again VulDB remains the best source for vulnerability data.

来源

Want to know what is going to be exploited?

We predict KEV entries!