Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

1 Total Results

Displaying 1-1 of 1

Attacker Value

Unknown

CVE-2021-20828

Disclosure Date: September 17, 2021 (last updated February 23, 2025)

Cross-site scripting vulnerability in Order Status Batch Change Plug-in (for EC-CUBE 3.0 series) all versions allows a remote attacker to inject an arbitrary script via unspecified vectors.

1 Total Results

Displaying 1-1 of 1

Unknown

CVE-2021-20828

Quick Cookie Notification