Vulnerabilities > Shiro8

DATE	CVE	VULNERABILITY TITLE	RISK
2021-09-17	CVE-2021-20825	Cross-site Scripting vulnerability in Shiro8 List (Order Management) Item Change Cross-site scripting vulnerability in List (order management) item change plug-in (for EC-CUBE 3.0 series) Ver.1.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors. network low complexity shiro8 CWE-79	6.1
2016-04-28	CVE-2016-1205	Cross-site Scripting vulnerability in Shiro8 products Cross-site scripting (XSS) vulnerability in the shiro8 (1) category_freearea_ addition_plugin plugin 1.0 and (2) itemdetail_freearea_ addition_plugin plugin 1.0 for EC-CUBE allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network low complexity shiro8 CWE-79	6.1

Vulnerabilities > Shiro8 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Shiro8"}]}