Medium severity4.7NVD Advisory· Published Dec 18, 2024· Updated Jun 17, 2026
CVE-2024-56173
CVE-2024-56173
Description
In Optimizely Configured Commerce before 5.2.2408, malicious payloads can be stored and subsequently executed in users' browsers under specific conditions: XSS from JavaScript in an SVG document.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <5.2.2408
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.