3 matches found
CVE-2023-43732
creationtimestamp| type| source ---|---|--- 2023-10-01 02:39:15+00:00| seen| https://t.me/cibsecurity/71375...
CVE-2023-43732 Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)
Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "taxclasstitle" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...
CVE-2023-43732
CVE-2023-43732 corresponds to a Cross-Site Scripting (XSS) vulnerability in OsCommerce where an attacker can inject JavaScript via the tax_class_title parameter. Affected: OsCommerce (4.12.x variants referenced). Root cause and impact are described as enabling script execution in a user’s browser...