CVE-2021-26617

Summary

This issues due to insufficient verification of the various input values from user’s input. The vulnerability allows remote attackers to execute malicious code in Firstmall via navercheckout_add function.

Affected Software

VendorProductVersion RangeStatus
Gabia Co., LtdFirstmallmultilingual latest versionaffected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References