A cross-site scripting (XSS) vulnerability in /public/admin/index.php?add_user at Ecommerce-Website v1.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username text field.
CPE | Name | Operator | Version |
---|---|---|---|
ecommerce-website | eq | 1.1.0 |