Vulnerabilities > HHG Multistore > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-28 | CVE-2021-46447 | Cross-site Scripting vulnerability in Hhg-Multistore Multistore 4.10.3/5.1.0 A cross-site scripting (XSS) vulnerability in H.H.G Multistore v5.1.0 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the State parameter under the Address Book module. | 5.4 |