Lucene search
K

64 matches found

Vulnrichment
Vulnrichment
added 2024/12/18 12:0 a.m.12 views

CVE-2024-56173

In Optimizely Configured Commerce before 5.2.2408, malicious payloads can be stored and subsequently executed in users' browsers under specific conditions: XSS from JavaScript in an SVG document...

5.9AI score0.00268EPSS
Exploits0References1
CVE
CVE
added 2024/12/18 12:0 a.m.55 views

CVE-2024-56174

Optimizely Configured Commerce prior to 5.2.2408 is affected by a stored XSS due to client-side template injection in search history. The vulnerability arises from storing malicious payloads that may be executed in users’ browsers under certain conditions. Affected software: Optimizely Configured...

8.1CVSS6.2AI score0.00365EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/12/18 12:0 a.m.58 views

CVE-2024-56173

Optimizely Configured Commerce (before 5.2.2408) is affected by a stored XSS vulnerability: malicious payloads can be stored and later executed in users’ browsers via JavaScript in an SVG document under certain conditions. Root cause: XSS in SVG handling. Impact is browser-side compromise of affe...

4.7CVSS5.9AI score0.00268EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/12/18 12:0 a.m.59 views

CVE-2024-56175

CVE-2024-56175 affects Optimizely Configured Commerce prior to 5.2.2408. The vulnerability arises from a client-side template injection in list item names, enabling stored XSS where malicious payloads can be stored and later executed in users’ browsers under specific conditions. Affected versions...

6.1CVSS6.2AI score0.00228EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder