CVE-2024-38963 | Nopcommerce 4.70.1 cross site scripting (Issue 7224)

Inserito da Angelo Barbosa | Lug 10, 2024 | CVE

A vulnerability classified as problematic has been found in Nopcommerce 4.70.1. Affected is an unknown function. The manipulation of the argument AddProductReview.Title/AddProductReview.ReviewText leads to cross site scripting.

This vulnerability is traded as CVE-2024-38963. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-38963 | Nopcommerce 4.70.1 cross site scripting (Issue 7224)

Post correlati

CVE-2024-38869 | Zoho ManageEngine ServiceDesk Plus cross site scripting

CVE-2024-40096 | com.cascadialabs.who 15.0 on Android information disclosure

CVE-2024-21983 | NetApp StorageGRID up to 11.7 uncaught exception (ntap-20240216-0012)

CVE-2024-8471 | PHPGurukul Job Portal 1.0 /jobportal/process.php JOBID/USERNAME cross site scripting