Cross Site Scripting (XSS) vulnerabilty exists in Hucart CMS 5.7.4 is via the mes_title field. The first user inserts a malicious script into the header field of the outbox and sends it to other users. When other users open the email, the malicious code will be executed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hucart hucart 5.7.4 |