EC-Cube Amazon Pay 2.12

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:ec-cube:amazon_pay:2.12:*:*:*:*:*:*:*

part: a version: 2.12 update: *

VendorEc Cube (5677c0e6-0154-50a5-b443-40e157e92c1a)
ProductAmazon Pay (607f3d98-ca64-5fa4-96ad-c39b71e12ff2)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:github/amzn/amazon-pay-sdk-php purl2cpe 2026-06-01 10:15:46.252414

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-6003 vulnerable 2026-06-03 14:40:36.618928 Details available
Cross-site scripting vulnerability in EC-CUBE plugin 'Amazon Pay Plugin 2.12,2.13' version 2.4.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Published: 2019-09-12T15:58:55.000Z
Updated: 2024-08-04T20:09:23.996Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.