hhg-multistore CVE Vulnerabilities & CVE List (5)

Products (CPE): — CVEs: 5

hhg-multistore vulnerability overview

Aggregates CVE and security vulnerability intelligence across all hhg-multistore-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk sql injection and vendor risk cross-site scripting and related problems; some flaws may lead to vendor impact data exposure and vendor impact session compromise.

Vulnerability distribution trend (last 24 months)

Showing 15 of 5 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2021-46448 H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/customers.php?page=1&cID. [email protected] 9.8 0.25% 2022-01-28 2024-11-21
CVE-2021-46447 A cross-site scripting (XSS) vulnerability in H.H.G Multistore v5.1.0 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the State parameter under the Address Book module. [email protected] 5.4 0.30% 2022-01-28 2024-11-21
CVE-2021-46446 H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=admin_access_group_edit&aagID. [email protected] 9.8 0.47% 2022-01-28 2024-11-21
CVE-2021-46445 H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/categories.php?box_group_id. [email protected] 9.8 0.25% 2022-01-28 2024-11-21
CVE-2021-46444 H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=admin_group_edit&agID. [email protected] 9.8 0.25% 2022-01-28 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence