Sign in Subscribe

← All vendors

Vendor

BootCommerce

Products

1

CVEs

1

Across products

1

Status

Private

Products

1

BootCommerce
1 CVE

Recent CVEs

1

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2022-50941	BootCommerce BootCommerce	Med	0.42	6.4	0.00		Feb 1, 2026	BootCommerce 3.2.1 contains persistent input validation vulnerabilities that allow remote attackers to inject malicious script code through guest order checkout input fields. Attackers can exploit unvalidated input parameters to execute arbitrary scripts, potentially leading to session hijacking, phishing attacks, and application module manipulation.

CVE-2022-50941MedFeb 1, 2026
BootCommerce
BootCommerce
risk 0.42cvss 6.4epss 0.00
BootCommerce 3.2.1 contains persistent input validation vulnerabilities that allow remote attackers to inject malicious script code through guest order checkout input fields. Attackers can exploit unvalidated input parameters to execute arbitrary scripts, potentially leading to session hijacking, phishing attacks, and application module manipulation.