Common vulnerabilities and Exposures (CVE)

Skip to main content

Required CVE Record Information

Description

Cross-site scripting (XSS) vulnerability in the Cyber-Will Social-button Premium plugin before 1.1 for EC-CUBE 2.13.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Updated:

This container includes required additional information provided by the CVE Program for this vulnerability.