CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-20734

Cross-site scripting vulnerability in Welcart e-Commerce versions prior to 2.2.4 allows remote attackers to inject arbitrary script or HTML via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.3%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://jvn.jp/en/jp/JVN70566757/index.html
https://www.welcart.com/archives/14039.html
https://jvn.jp/en/jp/JVN70566757/index.html
https://www.welcart.com/archives/14039.html

Products affected by CVE-2021-20734

Welcart » Welcart E-Commerce » Version: 1.5.2

cpe:2.3:a:welcart:welcart_e-commerce:1.5.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-20734

Products

Pricing

Contact Us