2 matches found
CVE-2022-34257 Adobe Commerce Stored XSS Arbitrary code execution
Adobe Commerce versions 2.4.3-p2 and earlier, 2.3.7-p3 and earlier and 2.4.4 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s...
CVE-2022-34257
Summary: CVE-2022-34257 refers to a stored Cross-Site Scripting (XSS) vulnerability in Adobe Commerce affecting versions 2.4.3-p2 and earlier, 2.3.7-p3 and earlier, and 2.4.4 and earlier. The issue allows an attacker to inject malicious scripts into vulnerable form fields, with JavaScript execute...