Vulnerabilities > Cactushop > Cactushop > 4.7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-04-22 | CVE-2010-1486 | Cross-Site Scripting vulnerability in Cactushop Multiple cross-site scripting (XSS) vulnerabilities in _invoice.asp in CactuShop before 6.155 allow remote attackers to inject arbitrary web script or HTML via the (1) billing address or (2) shipping address. | 4.3 |