2 matches found
CVE-2023-43719
Os Commerce is currently susceptible to a Cross-Site Scripting XSS vulnerability. This vulnerability allows attackers to inject JS through the "SHIPPINGGENDERTITLE1" parameter, potentially leading to unauthorized execution of scripts within a user's web browser...
CVE-2023-43719
CVE-2023-43719 corresponds to a reflected XSS vulnerability in OsCommerce. Multiple connected sources confirm an XSS weakness that allows injection of JavaScript via the SHIPPING_GENDER_TITLE[1] parameter, potentially enabling script execution in a user’s browser. The CVE is associated with OsCom...