CVE-2025-65591 | nopCommerce 4.90.0 Currencies Custom formatting cross site scripting

Inserito da Angelo Barbosa | Dic 16, 2025 | CVE

A vulnerability was found in nopCommerce 4.90.0. It has been declared as problematic. The impacted element is an unknown function of the component Currencies Handler. Executing manipulation of the argument Custom formatting can lead to cross site scripting.

This vulnerability is handled as CVE-2025-65591. The attack can be executed remotely. There is not any exploit available.

CVE-2025-65591 | nopCommerce 4.90.0 Currencies Custom formatting cross site scripting

Post correlati

CVE-2024-1029 | Cogites eReserv 7.7.58 tenancyDetail.php Nom cross site scripting

CVE-2024-6193 | itsourcecode Vehicle Management System 1.0 driverprofile.php driverid sql injection

CVE-2024-22091 | Mattermost up to 8.1.11/9.5.2/9.6.0/9.7.0 Request Path resource consumption

CVE-2025-9233 | Scada-LTS up to 2.7.8.1 view_edit.shtm Name cross site scripting