Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information via a crafted request to the sortBy parameter.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-12-08T00:00:00
Updated: 2024-08-02T20:45:42.078Z
Reserved: 2023-10-23T00:00:00
Link: CVE-2023-46495
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-12-08T20:15:07.313
Modified: 2024-11-21T08:28:36.213
Link: CVE-2023-46495
Redhat
No data.