CVE-2025-63879
CVE-2025-63879 affects the E-commerce Project (software) in versions v1.0 and earlier, specifically the /ecommerce/products.php component. The issue is a reflected XSS vulnerability triggered by injecting a payload into the id parameter, allowing arbitrary Javascript to run in a user’s browser. T...