Security Advisory

CVE-2013-5913

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-10-15 15:00:00

Last updated 2024-08-06 17:29:41

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the getRecommSearch function in recommlist.php in OXID eShop before 4.6.7, Professional and Community Edition 4.7.x before 4.7.8, and Enterprise Edition 5.x before 5.0.8 allows remote attackers to inject arbitrary web script or HTML via the searchrecomm parameter.

← Browse all CVEs View on cve.org ↗