6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
37.5%
laracom (aka Laravel FREE E-Commerce Software) 1.4.11 has a Cross-site Scripting vulnerability via search query.
github.com/jsdecena/laracom
github.com/jsdecena/laracom/commit/36ff6a5c4a7878c719304e9d9a5f1fc74a5af474
github.com/Laracommerce/laracom/pull/211
nvd.nist.gov/vuln/detail/CVE-2019-15489