CVE-2023-5111 in Os Commercethông tin

Tóm tắt

Bởi MITRE • 25/10/2023

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "featured_type_name[1]" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

chịu trách nhiệm

Fluid Attacks

Đặt trước

21/09/2023

Tiết lộ

25/10/2023

Kiểm duyệt

được chấp nhận

EPSS

0.00431

KEV

không

Các hoạt động

rất thấp

Nguồn

Do you know our Splunk app?

Download it now for free!