CVE-2020-6579
30.04.2020, 14:15
Cross-site scripting (XSS) vulnerability in mailhive/cloudbeez/cloudloader.php and mailhive/cloudbeez/cloudloader_core.php in the MailBeez plugin for ZenCart before 3.9.22 allows remote attackers to inject arbitrary web script or HTML via the cloudloader_mode parameter.
| Vendor | Product | Version |
|---|---|---|
| mailbeez | mailbeez | 𝑥 < 3.9.22 |
𝑥
= Vulnerable software versions