2 matches found
CVE-2023-43716 Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)
Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "MAXDISPLAYNEWPRODUCTSTITLE1" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...
CVE-2023-43716
Os Commerce is affected by a Cross-Site Scripting (XSS) vulnerability identified as CVE-2023-43716. The issue allows an attacker to inject JavaScript via the MAX_DISPLAY_NEW_PRODUCTS_TITLE[1] parameter, potentially enabling unauthorized script execution in a user’s browser. Affected product appea...