ec-cube/ec-cube vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
GHSA-7RHV-H82H-VPJHMediumec-cube/ec-cube: EC-CUBE has a Vulnerability that Allows MFA Bypass in the Administrative InterfaceCVE-2022-38975Mediumec-cube/ec-cube: EC-CUBE DOM-based cross-site scripting vulnerabilityCVE-2022-40199Lowec-cube/ec-cube: EC-CUBE Directory traversal vulnerabilityCVE-2021-20842Mediumec-cube/ec-cube: EC-CUBE Cross-site request forgery (CSRF) vulnerabilityCVE-2021-20778Highec-cube/ec-cube: EC-CUBE Improper access control vulnerabilityCVE-2021-20751Mediumec-cube/ec-cube: EC-CUBE Cross-site scripting vulnerabilityCVE-2021-20750Mediumec-cube/ec-cube: EC-CUBE Cross-site scripting vulnerabilityCVE-2021-20717Mediumec-cube/ec-cube: EC-CUBE Cross-site scripting vulnerabilityCVE-2020-5680Highec-cube/ec-cube: EC-CUBE Improper input validation vulnerabilityCVE-2020-5679Mediumec-cube/ec-cube: EC-CUBE Improper Restriction of Rendered UI Layers or FramesCVE-2020-5590Highec-cube/ec-cube: EC-CUBE Directory traversal vulnerabilityCVE-2014-0808Mediumec-cube/ec-cube: EC-CUBE vulnerable to authorization bypassCVE-2011-0451Mediumec-cube/ec-cube: EC-CUBE XSS VulnerabilitiesCVE-2018-16191Mediumec-cube/ec-cube: EC-CUBE Open redirect vulnerabilityCVE-2022-25355Mediumec-cube/ec-cube: EC-CUBE improperly handles HTTP Host header valuesCVE-2021-20841Mediumec-cube/ec-cube: EC-CUBE Improper access control in Management screen

Stop the waste.
Protect your environment with Kodem.