Arastta eCommerce 1.6.2 XSS Vulnerability in Login URI via PATH_INFO

Arastta eCommerce 1.6.2 XSS Vulnerability in Login URI via PATH_INFO

CVE-2018-20849 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Arastta eCommerce 1.6.2 is vulnerable to XSS via the PATH_INFO to the login/ URI.

Learn more about our Web Application Penetration Testing UK.