CNNVD-202601-5063 Information
CNNVD ID
CNNVD-202601-5063
Related CVE
- CNNVD Published: 2026-01-30
Description (Chinese)
Sellacious eCommerce是Sellacious公司的一个电商平台软件。 Sellacious eCommerce 4.6版本存在跨站脚本漏洞,该漏洞源于Manage Your Addresses模块对姓名、公司和地址等输入字段清理不当,可能导致存储型跨站脚本攻击。
Description (English)
Selacious eCommerce is an electrician platform for Selacious. Version 4.6 of Selacious eCommerce has a cross-site script loophole, which stems from the inadequate clean-up of input fields such as names, companies and addresses in the Manage Your Addresses module, which could lead to storage-type cross-site script attacks.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
Sellacious
Published
2026-01-30
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/48467 https://www.sellacious.com https://www.sellacious.com/free-open-source-ecommerce-software https://www.vulncheck.com/advisories/sellacious-ecommerce-persistent-cross-site-scripting https://www.vulnerability-lab.com/get_content.php?id=2226
Share on: