Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2017-04-21	CVE-2017-7992	Cross-site Scripting vulnerability in Heartland Payment Systems Heartland-PHP Heartland Payment Systems Payment Gateway PHP SDK hps/heartland-php v2.8.17 is vulnerable to a reflected XSS in examples/consumer-authentication/cruise.php via the URI, as demonstrated by the cavv parameter. network heartland-payment-systems CWE-79	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.