CVE-2022-28450
CVE-2022-28450 affects nopCommerce 4.50.1. It is a Cross-Site Scripting vulnerability in the forum “Text” parameter when creating a new post, caused by insufficient data validation/filtering of user-supplied data. This permits execution of arbitrary JavaScript in the victim’s browser. The provide...