CNNVD-202508-1999 Information

CNNVD ID

CNNVD-202508-1999

Related CVE

CVE-2025-9103

• CNNVD Published: 2025-08-18

Description (Chinese)

Zen Ventures Zen Cart是美国Zen Ventures公司的一个用于搭建在线购物车的平台。 Zen Ventures Zen Cart 2.1.0版本存在安全漏洞，该漏洞源于组件CKEditor对输入过滤不足，导致可被远程利用的跨站脚本攻击。

Description (English)

Zen Ventures Zen Cart is a platform used by Zen Ventures in the United States to build an online shopping car. There is a security loophole in version 2.1.0 of Zen Ventures Zen Cart, which stems from inadequate input filtering of component CKEditor, resulting in a remote-used cross-site script attack.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

Zen Ventures

Published

2025-08-18

Last Modified

2026-02-24

References

https://vuldb.com/?submit.628298 https://vuldb.com/?id.320425 https://hkohi.ca/vulnerability/28 https://vuldb.com/?ctiid.320425 https://gist.github.com/0xHamy/b2674eeffd1f73af96d29f152c47bcbd https://nvd.nist.gov/vuln/detail/CVE-2025-9103