Vulnerabilities > Oscommerce > CE Phoenix > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-09-03 CVE-2020-12058 Cross-site Scripting vulnerability in Oscommerce CE Phoenix 1.0.6.0
Several XSS vulnerabilities in osCommerce CE Phoenix before 1.0.6.0 allow an attacker to inject and execute arbitrary JavaScript code.
network
oscommerce CWE-79
4.3
4.3