Vulnerabilities > Zingiri > Zingiri WEB Shop
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-01-24 | CVE-2012-6506 | Cross-Site Scripting vulnerability in Zingiri web Shop 2.4.0 Multiple cross-site scripting (XSS) vulnerabilities in the Zingiri Web Shop plugin 2.4.0 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter in zing.inc.php or (2) notes parameter in fws/pages-front/onecheckout.php. | 4.3 |
2012-07-18 | CVE-2012-4033 | Unspecified vulnerability in Zingiri web Shop Multiple unspecified vulnerabilities in the Zingiri Web Shop plugin before 2.4.0 for WordPress have unknown impact and attack vectors. | 10.0 |