Vulnerabilities > Shopex > Ecshop > 4.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-06 | CVE-2023-1184 | Unspecified vulnerability in Shopex Ecshop A vulnerability, which was classified as problematic, has been found in ECshop up to 4.1.8. | 8.8 |
| 2023-03-06 | CVE-2023-1185 | Unspecified vulnerability in Shopex Ecshop A vulnerability, which was classified as problematic, was found in ECshop up to 4.1.8. | 8.8 |
| 2021-06-28 | CVE-2020-20640 | Cross-site Scripting vulnerability in Shopex Ecshop 4.0 Cross Site Scripting (XSS) vulnerability in ECShop 4.0 due to security filtering issues, in the user.php file, we can use the html entity encoding to bypass the security policy of the safety.php file, triggering the xss vulnerability. | 6.1 |