Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-244c-824v-c69g

Опубликовано: 18 дек. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 8.1

Описание

In Optimizely Configured Commerce before 5.2.2408, malicious payloads can be stored and subsequently executed in users' browsers under specific conditions: XSS from client-side template injection in search history.

In Optimizely Configured Commerce before 5.2.2408, malicious payloads can be stored and subsequently executed in users' browsers under specific conditions: XSS from client-side template injection in search history.

Ссылки

EPSS

Процентиль: 38%
0.00162
Низкий

8.1 High

CVSS3

CVE ID

CVE-2024-56174

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2024-56174

CVSS3: 8.1
nvd
8 месяцев назад

In Optimizely Configured Commerce before 5.2.2408, malicious payloads can be stored and subsequently executed in users' browsers under specific conditions: XSS from client-side template injection in search history.

EPSS

Процентиль: 38%
0.00162
Низкий

8.1 High

CVSS3

CVE ID

CVE-2024-56174

Дефекты

CWE-79