Approved changes feed: RSS · Atom
cpe:2.3:a:viart:shop:2.5.5_free:*:*:*:*:*:*:*
part: a version: 2.5.5_free update: *
| Vendor | Viart (5fdacd3e-7532-574a-ab2b-07269ade3f12) |
|---|---|
| Product | Shop (e0e3e7ca-e64c-5ccd-9337-212ddadcbb8e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2006-2979 |
vulnerable | 2026-06-08 04:49:07.987783 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, allow remote attackers to inject arbitrary web script or HTML via the (1) forum_id parameter in forum.php, which is not properly handled in block_forum_topics.php, and (2) item_id parameter in reviews.php, which is not properly handled in block_reviews.php.
Published: 2006-06-12T22:00:00.000Z
Updated: 2024-08-07T18:06:27.226Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.