CVE-2021-20828

Published: 2021-09-17T02:15Z

Last Modified: 2024-11-21T05:47Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Cross-site scripting vulnerability in Order Status Batch Change Plug-in (for EC-CUBE 3.0 series) all versions allows a remote attacker to inject an arbitrary script via unspecified vectors. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt