CVE-2021-47769

Medium CVSS: 5.1

Isshue Shopping Cart 3.5 contains a persistent cross-site scripting vulnerability in title input fields across stock, customer, and invoice modules. Attackers with privileged user accounts can inject malicious scripts that execute on preview, potentially enabling session hijacking and persistent phishing attacks.

Vendor

Bdtask

Product

Isshue

CWE

CWE-79

Yayın Tarihi

2026-01-15 16:16:08

Güncelleme

2026-01-26 16:15:55

Source Identifier

disclosure@vulncheck.com

KEV Date Added

Kategoriler

CWE-79 Isshue MEDIUM Bdtask 2026

Referanslar

https://www.bdtask.com/multi-store-ecommerce-shopping-cart-software/ https://www.exploit-db.com/exploits/50490 https://www.vulnerability-lab.com/get_content.php?id=2284 https://www.exploit-db.com/exploits/50490 https://www.vulnerability-lab.com/get_content.php?id=2284

Benzer Kayıtlar

High

CVE-2019-25505

Tradebox 5.4 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries…

Medium

CVE-2026-1599

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected ele…

Medium

CVE-2026-1600

A vulnerability was identified in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The impacted ele…

Medium

CVE-2026-1598

A vulnerability was found in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. Impacted is an unknow…

Medium

CVE-2026-1597

A vulnerability has been found in Bdtask SalesERP up to 20260116. This issue affects some unknown processing of the comp…

Medium

CVE-2025-13239

A security vulnerability has been detected in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution 5. A…