CVE-2023-46494 | EverShop NPM up to 1.0.0-rc.4 Grid.jsx ProductGrid cross site scripting

Posted by Angelo Barbosa | Dec 8, 2023 | CVE

A vulnerability was found in EverShop NPM up to 1.0.0-rc.4. It has been rated as problematic. Affected by this issue is the function ProductGrid of the file admin/productGrid/Grid.jsx. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2023-46494. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-46494 | EverShop NPM up to 1.0.0-rc.4 Grid.jsx ProductGrid cross site scripting

Related Posts

CVE-2024-45075 | IBM webMethods Integration 10.15 single-factor authentication

CVE-2024-40836 | Apple macOS Shortcut access control

CVE-2024-35538 | Typecho 1.3.0 Handler X-Forwarded-For unknown vulnerability

CVE-2024-5296 | D-Link D-View 2.0.1.28 TokenUtils hard-coded key (ZDI-24-447)