Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-27190
HistoryFeb 12, 2021 - 3:15 a.m.

Cross site scripting

2021-02-1203:15:00
PRIOn knowledge base
www.prio-n.com
3

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.8%

A Stored Cross Site Scripting(XSS) Vulnerability was discovered in PEEL SHOPPING 9.3.0 and 9.4.0, which are publicly available. The user supplied input containing polyglot payload is echoed back in javascript code in HTML response. This allows an attacker to input malicious JavaScript which can steal cookie, redirect them to other malicious website, etc.

CPENameOperatorVersion
peel_shoppingeq9.3.0
peel_shoppingeq9.4.0

5.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.8%

Related for PRION:CVE-2021-27190