Vulnerabilities > Oscommerce > CE Phoenix

DATE CVE VULNERABILITY TITLE RISK
2020-09-03 CVE-2020-12058 Cross-site Scripting vulnerability in Oscommerce CE Phoenix 1.0.6.0
Several XSS vulnerabilities in osCommerce CE Phoenix before 1.0.6.0 allow an attacker to inject and execute arbitrary JavaScript code.
network
low complexity
oscommerce CWE-79
6.1
6.1