CVE-2023-43723
CVE-2023-43723 affects OsCommerce/Os Commerce. The vulnerability is a reflected Cross-Site Scripting (XSS) flaw that allows injecting JavaScript via the orders_status_name[1] parameter, potentially enabling unauthorized script execution in a user’s browser. Multiple connected sources confirm the ...