CVE-2017-12984

Name of the Vulnerable Software and Affected Versions PHPMyWind version 5.3

Description The issue is related to a problem in the shoppingcart.php file, which is also connected to message.php, admin/message.php, and admin/message update.php. This problem allows for XSS.

Recommendations For PHPMyWind version 5.3, consider restricting access to the shoppingcart.php, message.php, admin/message.php, and admin/message update.php files until a patch is available. As a temporary workaround, avoid using the vulnerable files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.