Vulnerabilities > Wstmart
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-12-22 | CVE-2018-20367 | Cross-site Scripting vulnerability in Wstmart 2.0.8181212 The "mall some commodity details: commodity consultation" component in WSTMart 2.0.8_181212 has stored XSS via the consultContent parameter, as demonstrated by the index.php/home/goodsconsult/add.html URI. | 6.1 |
2018-11-09 | CVE-2018-19138 | Cross-Site Request Forgery (CSRF) vulnerability in Wstmart 2.0.7 WSTMart 2.0.7 has CSRF via the index.php/admin/staffs/add.html URI. | 8.8 |