CVE-2023-43735 in Os Commerceالمعلومات

الملخص

بحسب MITRE • 25/10/2023

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "formats_titles[7]" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

مسؤول

Fluid Attacks

حجز

21/09/2023

إفشاء

25/10/2023

الاعتدال

تمت الموافقة

إدخال

VDB-241019

EPSS

0.00431

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you know our Splunk app?

Download it now for free!