Skip to main content

Ec Cube Payment Module

2 CVEs product

Monthly

CVE-2018-0658 HIGH This Week

Input validation issue in EC-CUBE Payment Module (2.12) version 3.5.23 and earlier, EC-CUBE Payment Module (2.11) version 2.3.17 and earlier, GMO-PG Payment Module (PG Multi-Payment Service) (2.12). Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE PHP Ec Cube Payment Module Gmo Pg Payment Module
NVD
CVSS 3.0
7.2
EPSS
1.0%
CVE-2018-0657 MEDIUM This Month

Cross-site scripting vulnerability in EC-CUBE Payment Module and GMO-PG Payment Module (PG Multi-Payment Service) for EC-CUBE (EC-CUBE Payment Module (2.12) version 3.5.23 and earlier, EC-CUBE. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Ec Cube Payment Module Gmo Pg Payment Module
NVD
CVSS 3.0
4.8
EPSS
0.5%
EPSS 1% CVSS 7.2
HIGH This Week

Input validation issue in EC-CUBE Payment Module (2.12) version 3.5.23 and earlier, EC-CUBE Payment Module (2.11) version 2.3.17 and earlier, GMO-PG Payment Module (PG Multi-Payment Service) (2.12). Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE PHP Ec Cube Payment Module +1
NVD
EPSS 1% CVSS 4.8
MEDIUM This Month

Cross-site scripting vulnerability in EC-CUBE Payment Module and GMO-PG Payment Module (PG Multi-Payment Service) for EC-CUBE (EC-CUBE Payment Module (2.12) version 3.5.23 and earlier, EC-CUBE. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Ec Cube Payment Module Gmo Pg Payment Module
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy