Unrated severityNVD Advisory· Published Sep 30, 2023· Updated Sep 23, 2024
Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)
CVE-2023-43717
Description
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "MSEARCH_HIGHLIGHT_ENABLE_TITLE[1]" parameter, potentially leading to unauthorized execution of scripts within a user's web browser.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Os Commerce/Os Commercev5Range: 4.12.56860
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.