Vulnerabilities (CVE)

Filtered by vendor Cactushop Subscribe
Filtered by product Cactushop
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-1486 1 Cactushop 1 Cactushop 2024-02-04 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in _invoice.asp in CactuShop before 6.155 allow remote attackers to inject arbitrary web script or HTML via the (1) billing address or (2) shipping address.