exploitDog

GHSA-7g7f-2jjj-48fv

Опубликовано: 03 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

nopCommerce 4.40.3 is vulnerable to XSS in the Product Name at /Admin/Product/Edit/[id]. Each time a user views the product in the shop, the XSS payload fires.

nopCommerce 4.40.3 is vulnerable to XSS in the Product Name at /Admin/Product/Edit/[id]. Each time a user views the product in the shop, the XSS payload fires.

Ссылки

EPSS

Процентиль: 21%

0.00067

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2021-42193

CVSS3: 6.1

nvd

4 месяца назад

nopCommerce 4.40.3 is vulnerable to XSS in the Product Name at /Admin/Product/Edit/[id]. Each time a user views the product in the shop, the XSS payload fires.

EPSS

Процентиль: 21%

0.00067

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-79