{"api_version":"1","generated_at":"2026-07-05T23:31:29+00:00","cve":"CVE-2013-7317","urls":{"html":"https://cve.report/CVE-2013-7317","api":"https://cve.report/api/cve/CVE-2013-7317.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2013-7317","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2013-7317"},"summary":{"title":"CVE-2013-7317","description":"Multiple cross-site scripting (XSS) vulnerabilities in CS-Cart before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) settings_file or (2) data_file parameter to (a) ampie.swf, (b) amline.swf, or (c) amcolumn.swf.","state":"PUBLISHED","assigner":"mitre","published_at":"2014-01-24 15:08:00","updated_at":"2026-04-29 01:13:23"},"problem_types":["CWE-79","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"4.3","severity":"","vector":"AV:N/AC:M/Au:N/C:N/I:P/A:N","data":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"}}],"references":[{"url":"http://www.kb.cert.org/vuls/id/405942","name":"http://www.kb.cert.org/vuls/id/405942","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"],"title":"Vulnerability Note VU#405942 - CS-Cart version 4.0.2 contains cross-site scripting vulnerabilities","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2013-7317","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-7317","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"1.3.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"1.3.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"1.3.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"1.3.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.10","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.11","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.12","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.13","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.14","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.15","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.6","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.7","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.8","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.0.9","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.1.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.1.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.1.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.1.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.2.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.2.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.2.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.2.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"2.2.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"3.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"3.0.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"3.0.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"3.0.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"3.0.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"3.0.6","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"4.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"4.0.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"7317","vulnerable":"1","versionEndIncluding":"4.0.3","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"cs-cart","cpe5":"cs-cart","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2013","cve_id":"7317","cve":"CVE-2013-7317","epss":"0.005890000","percentile":"0.692580000","score_date":"2026-05-03","updated_at":"2026-05-04 00:13:06"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-06T18:01:20.321Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"VU#405942","tags":["third-party-advisory","x_refsource_CERT-VN","x_transferred"],"url":"http://www.kb.cert.org/vuls/id/405942"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"descriptions":[{"lang":"en","value":"Multiple cross-site scripting (XSS) vulnerabilities in CS-Cart before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) settings_file or (2) data_file parameter to (a) ampie.swf, (b) amline.swf, or (c) amcolumn.swf."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2014-01-24T15:00:00.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"VU#405942","tags":["third-party-advisory","x_refsource_CERT-VN"],"url":"http://www.kb.cert.org/vuls/id/405942"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2013-7317","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Multiple cross-site scripting (XSS) vulnerabilities in CS-Cart before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) settings_file or (2) data_file parameter to (a) ampie.swf, (b) amline.swf, or (c) amcolumn.swf."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"VU#405942","refsource":"CERT-VN","url":"http://www.kb.cert.org/vuls/id/405942"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2013-7317","datePublished":"2014-01-24T15:00:00.000Z","dateReserved":"2014-01-24T00:00:00.000Z","dateUpdated":"2024-09-17T02:32:17.527Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2014-01-24 15:08:00","lastModifiedDate":"2026-04-29 01:13:23","problem_types":["CWE-79","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:*:*:*:*:*:*:*:*","versionEndIncluding":"4.0.3","matchCriteriaId":"5457E337-5FDE-4EAC-B4A9-F32C02B93EC3"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"4EA28C65-C87E-47B9-AEB2-A2007851A2DE"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:1.3.2:*:*:*:*:*:*:*","matchCriteriaId":"2560C3BF-C7DC-4645-B278-F86658660ADE"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:1.3.3:*:*:*:*:*:*:*","matchCriteriaId":"48662D7D-F946-45A4-AC02-0A25168154E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:1.3.4:*:*:*:*:*:*:*","matchCriteriaId":"69BFEF50-A4AE-4F21-A95F-0DB220E0646C"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0:*:*:*:*:*:*:*","matchCriteriaId":"24A42E28-C26D-45EF-AAE4-DACFB5985F9D"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.5:*:*:*:*:*:*:*","matchCriteriaId":"3A79978F-42B3-4A3F-BFB0-E473DCF4A7E0"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.6:*:*:*:*:*:*:*","matchCriteriaId":"85082B70-6B99-419D-B997-000A874DECE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.7:*:*:*:*:*:*:*","matchCriteriaId":"CE709E67-54A6-49CA-B39A-C7A3505C9FD2"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.8:*:*:*:*:*:*:*","matchCriteriaId":"C4E9A619-70D3-43E1-8FBD-68EDD5A0BB77"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.9:*:*:*:*:*:*:*","matchCriteriaId":"EB8112B0-6D7B-4F5F-9BBA-14569AC2BFA1"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.10:*:*:*:*:*:*:*","matchCriteriaId":"D937903E-EB19-4128-9B34-0828AE74CFAE"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.11:*:*:*:*:*:*:*","matchCriteriaId":"11B8D296-C729-400C-8421-08DC98FE4BA0"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.12:*:*:*:*:*:*:*","matchCriteriaId":"5AD16058-552D-46BD-BC7E-7D75CCA3037E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.13:*:*:*:*:*:*:*","matchCriteriaId":"93144EE9-58DF-4BB6-8FAC-9FD95DF95100"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.14:*:*:*:*:*:*:*","matchCriteriaId":"45774F49-B37E-480C-94F0-278989392C9A"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.0.15:*:*:*:*:*:*:*","matchCriteriaId":"FFB4667A-CB3E-4E1D-B90B-CB2EB5142925"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.1:*:*:*:*:*:*:*","matchCriteriaId":"CD6CF3A4-EE73-4CE6-A298-1D9154428256"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.1.1:*:*:*:*:*:*:*","matchCriteriaId":"1391D8DB-3F10-45A2-97EE-A673EF589C7F"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.1.2:*:*:*:*:*:*:*","matchCriteriaId":"EC146FFC-A389-4652-A7D8-B4069FBF13F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.1.3:*:*:*:*:*:*:*","matchCriteriaId":"B4EAC9A8-6717-4B15-A241-33F59F9CBD05"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.1.4:*:*:*:*:*:*:*","matchCriteriaId":"5F429C2E-07A5-401B-BCA6-DFB73D684B34"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.2.1:*:*:*:*:*:*:*","matchCriteriaId":"581B4B82-A207-42A3-ADD9-BC457C131B2B"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.2.2:*:*:*:*:*:*:*","matchCriteriaId":"DBF00DF1-E596-4860-87E7-1D6204548B1E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.2.3:*:*:*:*:*:*:*","matchCriteriaId":"818EBABA-2C78-4B90-A64B-CD80878F9904"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.2.4:*:*:*:*:*:*:*","matchCriteriaId":"F577A6F2-EDE2-4543-8EF6-9B0E68BAFBA4"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:2.2.5:*:*:*:*:*:*:*","matchCriteriaId":"B0F1C5BF-C2B1-4AA2-B643-E472B64EEA49"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:3.0:*:*:*:*:*:*:*","matchCriteriaId":"52F3E4CE-4A77-42CE-9F57-B5D05CCF05D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:3.0.2:*:*:*:*:*:*:*","matchCriteriaId":"4BA204ED-767B-4928-8870-33B25A10F3A4"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:3.0.3:*:*:*:*:*:*:*","matchCriteriaId":"BB2D439E-F3D1-4D3A-90EC-50EE09CAD1A5"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:3.0.4:*:*:*:*:*:*:*","matchCriteriaId":"99F8E1C7-C33F-4BC9-A560-50439233F53E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:3.0.5:*:*:*:*:*:*:*","matchCriteriaId":"F875B985-904D-41BF-A499-49B4A0308235"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:3.0.6:*:*:*:*:*:*:*","matchCriteriaId":"5350081E-435F-4F3E-B679-539F888F2E44"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:4.0:*:*:*:*:*:*:*","matchCriteriaId":"D2D9A12D-89EB-4133-A774-F7D1FB6138B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:cs-cart:cs-cart:4.0.2:*:*:*:*:*:*:*","matchCriteriaId":"2A212F38-E6B3-44FE-9FAD-83DEE877497D"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2013","CveId":"7317","Ordinal":"1","Title":"CVE-2013-7317","CVE":"CVE-2013-7317","Year":"2013"},"notes":[{"CveYear":"2013","CveId":"7317","Ordinal":"1","NoteData":"Multiple cross-site scripting (XSS) vulnerabilities in CS-Cart before 4.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) settings_file or (2) data_file parameter to (a) ampie.swf, (b) amline.swf, or (c) amcolumn.swf.","Type":"Description","Title":"CVE-2013-7317"},{"CveYear":"2013","CveId":"7317","Ordinal":"2","NoteData":"2014-01-24","Type":"Other","Title":"Published"}]}}}