A vulnerability was found in iRedAdmin up to 2.5 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument order_name leads to cross site scripting.
This vulnerability is handled as CVE-2024-47227. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.