CVE-2022-42236
CVE-2022-42236 affects Merchandise Online Store v1.0. A Stored XSS issue exists in the edit account form that allows injection of arbitrary JavaScript. The vulnerability is documented across multiple sources (NVD/Red Hat/CVE listings) and is associated with a MEDIUM base score (CVSSv3.1: AV:N/AC:...