Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability.
This vulnerability allows attackers to inject JS through the "SKIP_CART_PAGE_TITLE[1]" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Fluid Attacks
Published: 2023-09-30T20:53:32.686Z
Updated: 2024-08-02T19:44:44.048Z
Reserved: 2023-09-21T14:12:18.842Z
Link: CVE-2023-43714
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-30T21:15:10.010
Modified: 2023-10-19T01:53:10.013
Link: CVE-2023-43714
Redhat
No data.