CVE-2013-5996
Multiple cross-site scripting (XSS) vulnerabilities in shopping/payment.tpl components in LOCKON EC-CUBE 2.11.0 through
Multiple cross-site scripting (XSS) vulnerabilities in shopping/payment.tpl components in LOCKON EC-CUBE 2.11.0 through 2.13.0 allow remote attackers to inject arbitrary web script or HTML via crafted values.
MEDIUM · CVSS 4.3
EPSS 0.00256
Schedule remediation
- Public exploit or PoC is available
Sigma rules0
YARA rules0