2 matches found
CVE-2023-43702
Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "trackingnumber" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...
CVE-2023-43702
Os Commerce (as catalogued across multiple sources for CVE-2023-43702) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. The issue allows injecting JavaScript through the tracking_number parameter, potentially enabling unauthorized script execution in a user’s browser. Affected...