CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability was found in Shoplazza LifeStyle 1.1. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/api/theme-edit/ of the component Shipping/Member Discount/Icon. The manipulation leads to cross site scripting. The attack can be initiated remotel...

5.4CVSS6.4AI score0.00272EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:33 a.m.•4 views

CVE-2022-4599

A vulnerability was found in Shoplazza LifeStyle 1.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/api/theme-edit/ of the component Product Handler. The manipulation of the argument Subheading/Heading/Text/Button Text/Label leads to cross...

5.4CVSS6.2AI score0.00272EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:33 a.m.•8 views

CVE-2022-4596

A vulnerability, which was classified as problematic, has been found in Shoplazza 1.1. This issue affects some unknown processing of the file /admin/api/admin/articles/ of the component Add Blog Post Handler. The manipulation of the argument Title leads to cross site scripting. The attack may be...

5.4CVSS6.2AI score0.0027EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:32 a.m.•7 views

CVE-2022-4602

A vulnerability was found in Shoplazza LifeStyle 1.1. It has been rated as problematic. This issue affects some unknown processing of the file /admin/api/theme-edit/ of the component Review Flow Handler. The manipulation of the argument Title leads to cross site scripting. The attack may be...

5.4CVSS6.2AI score0.00272EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:20 a.m.•5 views

CVE-2022-4598

A vulnerability has been found in Shoplazza LifeStyle 1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/api/theme-edit/ of the component Announcement Handler. The manipulation of the argument Text/Mobile Text leads to cross site...

5.4CVSS6.2AI score0.00272EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:19 a.m.•3 views

CVE-2022-4597

A vulnerability, which was classified as problematic, was found in Shoplazza LifeStyle 1.1. Affected is an unknown function of the file /admin/api/admin/v2products of the component Create Product Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely...

5.4CVSS6.3AI score0.00392EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:19 a.m.•7 views

CVE-2022-4600

A vulnerability was found in Shoplazza LifeStyle 1.1. It has been classified as problematic. This affects an unknown part of the file /admin/api/theme-edit/ of the component Product Carousel Handler. The manipulation of the argument Heading/Description leads to cross site scripting. It is possibl...

5.4CVSS6.2AI score0.00272EPSS

Exploits0References1

Exploit DB•added 2023/03/30 12:0 a.m.•132 views

Shoplazza 1.1 - Stored Cross-Site Scripting (XSS)

Exploit Title: Shoplazza 1.1 - Stored Cross-Site Scripting XSS Exploit Author: Andrey Stoykov Software Link: https://github.com/Shoplazza/LifeStyle Version: 1.1 Tested on: Ubuntu 20.04 Stored XSS 1: To reproduce do the following: 1. Login as normal user account 2. Browse "Blog Posts" - "Manage...

7.4AI score

Exploits0