Описание
PEEL Shopping 9.3.0 contains a stored cross-site scripting vulnerability in the address parameter of the change_params.php script. Attackers can inject malicious JavaScript payloads that execute when users interact with the address text box, potentially enabling client-side script execution.
EPSS
Процентиль: 13%
0.00044
Низкий
7.2 High
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 7.2
github
15 дней назад
PEEL Shopping 9.3.0 contains a stored cross-site scripting vulnerability in the address parameter of the change_params.php script. Attackers can inject malicious JavaScript payloads that execute when users interact with the address text box, potentially enabling client-side script execution.
EPSS
Процентиль: 13%
0.00044
Низкий
7.2 High
CVSS3
Дефекты
CWE-79