Lucene search

K
cvelistMitreCVELIST:CVE-2020-29475
HistoryDec 29, 2020 - 2:47 p.m.

CVE-2020-29475

2020-12-2914:47:34
mitre
www.cve.org

0.001 Low

EPSS

Percentile

39.0%

nopCommerce Store 4.30 is affected by cross-site scripting (XSS) in the Schedule tasks name field. This vulnerability can allow an attacker to inject the XSS payload in Schedule tasks and each time any user will go to that page of the website, the XSS triggers and attacker can able to steal the cookie according to the crafted payload.

0.001 Low

EPSS

Percentile

39.0%

Related for CVELIST:CVE-2020-29475