Lucene search
Veracode Vulnerability DatabaseVERACODE:35399HistoryMay 05, 2022 - 5:58 p.m.
Cross-site Scripting (XSS)
2022-05-0517:58:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.001 Low
EPSS
Percentile
19.6%
s-cart/s-cart and s-cart/core are vulnerable to cross-site scripting(XSS) attacks. An attacker is able to steal user cookies by tricking a victim to visit a specifically crafted URL and gain unauthorized access to that user’s account.
| CPE | Name | Operator | Version |
|---|---|---|---|
| s-cart/s-cart | le | 6.9.x-dev | |
| s-cart/core | le | 6.9.x-dev | |
| s-cart/s-cart | le | 6.9.x-dev | |
| s-cart/core | le | 6.9.x-dev |
Related
cvelist
cvelist
CVE-2022-21149 Cross-site Scripting (XSS)
2022-05-01 00:00:00
osv
osv
SCart is vulnerable to cross-site scripting (XSS)
2022-05-03 00:00:46
CVE-2022-21149
2022-05-01 16:15:08
cve
cve
CVE-2022-21149
2022-05-01 16:15:08
prion
prion
Cross site scripting
2022-05-01 16:15:00
cnvd
cnvd
s-cart Cross-Site Scripting Vulnerability (CNVD-2022-70091)
2022-05-07 00:00:00
github
github
SCart is vulnerable to cross-site scripting (XSS)
2022-05-03 00:00:46
nvd
nvd
CVE-2022-21149
2022-05-01 16:15:08