Lucene search
GoogleOSV:GHSA-P2J7-6G9H-32XHHistoryMar 30, 2022 - 12:00 a.m.
Cross site scripting in Shopizer
2022-03-3000:00:27
Google
osv.dev
7
0.001 Low
EPSS
Percentile
21.4%
A Stored Cross Site Scripting (XSS) vulnerability exists in Shopizer versions v2.0.2 through v2.17.0 via the “Manage Images” tab, which allows an attacker to upload a SVG file containing malicious JavaScript code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| com.shopizer:shopizer | eq | 2.16.0 |
Related
nvd
nvd
CVE-2022-23059
2022-03-29 11:15:07
prion
prion
Cross site scripting
2022-03-29 11:15:00
osv
osv
CVE-2022-23059
2022-03-29 11:15:07
cve
cve
CVE-2022-23059
2022-03-29 11:15:07
cvelist
cvelist
CVE-2022-23059 Shopizer - Stored XSS in Manage Images
2022-03-16 00:00:00
github
github
Cross site scripting in Shopizer
2022-03-30 00:00:27