CVE-2024-3579

XSS in Online Shopping System Advanced

CVSS 6.1 MEDIUMEPSS 0.3%CWE-79

Open-source project Online Shopping System Advanced is vulnerable to Reflected Cross-Site Scripting (XSS). An attacker might trick somebody into using a crafted URL, which will cause a script to be run in user's browser.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Produtos afetados

Puneeth Reddy · Online Shopping System Advanced

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://cert.pl/en/posts/2024/05/CVE-2024-3579 https://cert.pl/posts/2024/05/CVE-2024-3579