Description

CubeCart 6.2.2 has Reflected XSS via a /{ADMIN-FILE}/ query string.

Remediation

References

CVE-2018-20703

Related Vulnerabilities

WordPress Plugin Photo Gallery, Images, Slider in Rbs Image Gallery Remote Code Execution (2.0.14)

Drupal Core 6.x Remote Code Execution (6.0 - 6.38)

MySQL CVE-2019-2685 Vulnerability (CVE-2019-2685)

PleskWin Other Vulnerability (CVE-2013-0133)

Jboss EAP Credentials Management Errors Vulnerability (CVE-2012-0034)

Severity

Medium

Classification

CVE-2018-20703 CWE-707 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities