MidnightBSD

Advisories for jshop_e-commerce

CVE-2004-1738 MEDIUM

Cross-site scripting (XSS) vulnerability in page.php in JShop allows remote attackers to inject arbitrary web script or HTML via the xPage parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
jshop_e-commerce jshop_server 1.2
CVE-2004-2084 MEDIUM

Cross-site scripting (XSS) vulnerability in search.php in JShop E-Commerce Server allows remote attackers to inject arbitrary web script or HTML via the xSearch parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
jshop_e-commerce jshop_server 1.0.3
jshop_e-commerce jshop_server 1.2.0
jshop_e-commerce jshop_professional 3.0
jshop_e-commerce jshop_professional 3.3
jshop_e-commerce jshop_server 1.1.0
jshop_e-commerce jshop_server 1.0.2
jshop_e-commerce jshop_professional 3.1
jshop_e-commerce jshop_professional 3.2
jshop_e-commerce jshop_server 1.0.4
jshop_e-commerce jshop_server 1.0.1
jshop_e-commerce jshop_professional 3.4