VYPR
Unrated severityNVD Advisory· Published Sep 30, 2023· Updated Sep 23, 2024

Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)

CVE-2023-43715

Description

Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "ENTRY_FIRST_NAME_MIN_LENGTH_TITLE[1]" parameter, potentially leading to unauthorized execution of scripts within a user's web browser.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.