Lucene search
+L

4 matches found

osv
osv
added 2023/09/30 10:15 p.m.4 views

CVE-2023-43718

Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "MSEARCHENABLETITLE1" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...

5.4CVSS5.9AI score0.00431EPSS
Exploits1References2
nvd
nvd
added 2023/09/30 10:15 p.m.24 views

CVE-2023-43718

Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "MSEARCHENABLETITLE1" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...

5.4CVSS5.3AI score0.00431EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2023/09/30 9:19 p.m.15 views

CVE-2023-43718 Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)

Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "MSEARCHENABLETITLE1" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...

5.4CVSS6AI score0.00431EPSS
Exploits1References2
cve
cve
added 2023/09/30 9:19 p.m.56 views

CVE-2023-43718

OsCommerce (4.x) is affected by a Cross-Site Scripting (XSS) vulnerability that allows attackers to inject JavaScript through the MSEARCH_ENABLE_TITLE[1] parameter, potentially leading to unauthorized script execution in a user’s browser. The vulnerability is documented across multiple feeds (NVD...

5.4CVSS5.3AI score0.00431EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder