Lucene search
MitreCVELIST:CVE-2020-12058HistorySep 03, 2020 - 1:09 p.m.
CVE-2020-12058
2020-09-0313:09:48
mitre
www.cve.org
3
oscommerce
xss
injection
javascript code
security vulnerability
ce phoenix
Several XSS vulnerabilities in osCommerce CE Phoenix before 1.0.6.0 allow an attacker to inject and execute arbitrary JavaScript code. The malicious code can be injected as follows: the page parameter to catalog/admin/order_status.php, catalog/admin/tax_rates.php, catalog/admin/languages.php, catalog/admin/countries.php, catalog/admin/tax_classes.php, catalog/admin/reviews.php, or catalog/admin/zones.php; or the zpage or spage parameter to catalog/admin/geo_zones.php.
Related
osv
osv
CVE-2020-12058
2020-09-03 14:15:10
prion
prion
Cross site scripting
2020-09-03 14:15:00
cve
cve
CVE-2020-12058
2020-09-03 14:15:10
nvd
nvd
CVE-2020-12058
2020-09-03 14:15:10