Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
---|---|---|---|---|---|
CVE-2018-20849 | BDSA-2018-1771 | Medium | Jun 30, 2019 | Arastta eCommerce 1.6.2 is vulnerable to XSS via the PATH_INFO to the login/ URI. |
1.6.2
|
BDSA-2015-0391 | High | Jan 23, 2018 | Arsatta is vulnerable to SQL injection via the admin section. An attacker with admin privileges could perform a SQL injection attack which could lead t more... | ||
BDSA-2015-0390 | High | Jan 23, 2018 | Arastta is vulnerable to a cross-site scripting (XSS) vulnerability. This could allow an attacker to inject arbitrary web scripts and obtain sensitive more... | ||
BDSA-2015-0363 | Critical | Jan 18, 2018 | Arastta is vulnerable to cross-site scripting (XSS) due to a lack of sanitization on user supplied links. An attacker can use XSS to execute arbitrary more... |