Sylius is an open source e-commerce platform. Sylius suffers from a cross-site scripting vulnerability that could be exploited by attackers to upload SVG files containing XSS code in the administration panel to obtain user cookies and construct phishing attacks.
CPE | Name | Operator | Version |
---|---|---|---|
sylius sylius | lt | 1.9.10 | |
sylius sylius | lt | 1.10.11 | |
sylius sylius | lt | 1.11.2 |