A reflected cross-site scripting (XSS) vulnerability exists in the TranzWare Payment Gateway 3.1.12.3.2. A remote unauthenticated attacker is able to execute arbitrary HTML code via crafted url (different vector than CVE-2020-28414).
CPE | Name | Operator | Version |
---|---|---|---|
tranzware_payment_gateway | eq | 3.1.12.3.2 |