CVE-2021-47769

← CVEs

MED 4.8

Published

2026-01-15

Last Modified

2026-01-26

Affected Apps

Affected Devices

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Isshue Shopping Cart 3.5 contains a persistent cross-site scripting vulnerability in title input fields across stock, customer, and invoice modules. Attackers with privileged user accounts can inject malicious scripts that execute on preview, potentially enabling session hijacking and persistent phishing attacks.

Affected Applications in Environment 4

ssh v1:9.2p1-2+deb12u7

1 device

ssh v1:8.4p1-5+deb11u5

2 devices

ssh v1:10.0p1-7

1 device

ssh v1:9.6p1-3ubuntu13.15

1 device

Affected Devices 5

2ua5171h8k Linux auto-score Linux mirror3 Linux svn.usu.edu Linux sympa.ser321.usu.edu Linux

References 5

https://www.bdtask.com/multi-store-ecommerce-shopping-cart-software/
https://www.exploit-db.com/exploits/50490
https://www.vulnerability-lab.com/get_content.php?id=2284
https://www.exploit-db.com/exploits/50490
https://www.vulnerability-lab.com/get_content.php?id=2284