Lucene search
China National Vulnerability DatabaseCNVD-2022-70091HistoryMay 07, 2022 - 12:00 a.m.
s-cart Cross-Site Scripting Vulnerability (CNVD-2022-70091)
2022-05-0700:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
0.001 Low
EPSS
Percentile
19.6%
s-cart is a Php-based e-commerce management platform from the s-cart community. s-cart versions prior to 6.9 contain a cross-site scripting vulnerability that can be exploited by attackers to execute JavaScript code on the client side, which can steal cookies from any victim who accesses the affected URL, allowing unauthorized access to that user’s account.
| CPE | Name | Operator | Version |
|---|---|---|---|
| s-cart s-cart | lt | 6.9 |
Related
osv
osv
SCart is vulnerable to cross-site scripting (XSS)
2022-05-03 00:00:46
CVE-2022-21149
2022-05-01 16:15:08
veracode
veracode
Cross-site Scripting (XSS)
2022-05-05 17:58:52
cvelist
cvelist
CVE-2022-21149 Cross-site Scripting (XSS)
2022-05-01 00:00:00
cve
cve
CVE-2022-21149
2022-05-01 16:15:08
prion
prion
Cross site scripting
2022-05-01 16:15:00
github
github
SCart is vulnerable to cross-site scripting (XSS)
2022-05-03 00:00:46
nvd
nvd
CVE-2022-21149
2022-05-01 16:15:08