2 matches found
CVE-2022-29628
A cross-site scripting XSS vulnerability in /omps/seller of Online Market Place Site v1.0 allows attackers to execute arbitrary web cripts or HTML via a crafted payload injected into the Page parameter...
CVE-2022-29628
The CVE-2022-29628 entry describes a cross-site scripting (XSS) vulnerability in Online Market Place Site v1.0, exploitable via the Page parameter in /omps/seller. The root cause is lack of checksum filtering/output sanitization for user-supplied data, enabling arbitrary web scripts/HTML executio...