Phpeppershop » Phpeppershop : Security Vulnerabilities, CVEs,
Multiple cross-site scripting (XSS) vulnerabilities in PHPepperShop 1.4 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) index.php or (2) shop/kontakt.php, or (3) shop_kunden_mgmt.php or (4) SHOP_KONFIGURATION.php in shop/Admin/.
Max CVSS
4.3
EPSS Score
0.67%
Published
2008-12-15
Updated
2018-10-11
1 vulnerabilities found