Vulnerabilities > Shiro8 > List Order Management Item Change

DATE CVE VULNERABILITY TITLE RISK
2021-09-17 CVE-2021-20825 Cross-site Scripting vulnerability in Shiro8 List (Order Management) Item Change
Cross-site scripting vulnerability in List (order management) item change plug-in (for EC-CUBE 3.0 series) Ver.1.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors.
network
low complexity
shiro8 CWE-79
6.1
6.1