2 matches found
CVE-2023-6609
A vulnerability was found in osCommerce 4. It has been classified as problematic. This affects an unknown part of the file /b2b-supermarket/catalog/all-products. The manipulation of the argument keywords with the input %27%22%3E%3Cimg%2Fsrc%3D1+onerror%3Dalert%28document.cookie%29%3E leads to cro...
CVE-2023-6609
The CVE-2023-6609 entry concerns osCommerce 4 with a cross-site scripting (XSS) vulnerability in the /b2b-supermarket/catalog/all-products endpoint. The issue is triggered by manipulating the keywords argument (example payload: %27%22%3E%3Cimg%2Fsrc%3D1+onerror%3Dalert%28document.cookie%29%3E), a...