CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-6578

Zen Cart 1.5.6d allows reflected XSS via the main_page parameter to includes/templates/template_default/common/tpl_main_page.php or includes/templates/responsive_classic/common/tpl_main_page.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.3%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://herolab.usd.de/security-advisories/
https://herolab.usd.de/security-advisories/usd-2019-0069/
https://herolab.usd.de/security-advisories/
https://herolab.usd.de/security-advisories/usd-2019-0069/

Products affected by CVE-2020-6578

Zen-Cart » Zen Cart » Version: 1.5.6d

cpe:2.3:a:zen-cart:zen_cart:1.5.6d

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-6578

Products

Pricing

Contact Us