Unrated severityNVD Advisory· Published Jul 9, 2024· Updated Aug 2, 2024
CVE-2024-38963
CVE-2024-38963
Description
Nopcommerce 4.70.1 is vulnerable to Cross Site Scripting (XSS) via the combined "AddProductReview.Title" and "AddProductReview.ReviewText" parameter(s) (Reviews) when creating a new review.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Nopcommerce/Nopcommercedescription
- Range: = 4.70.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.