CVE-2023-43723 in Os Commerceinformación

Resumen

por MITRE • 2023-10-25

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "orders_status_name[1]" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsable

Fluid Attacks

Reservar

2023-09-21

Divulgación

2023-10-25

Moderación

aceptado

Artículo

VDB-241009

CPE

listo

EPSS

0.00431

KEV

no

Actividades

muy bajo

Fuentes

Want to know what is going to be exploited?

We predict KEV entries!