Description
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "translation_value[1]" parameter, potentially leading to unauthorized execution of scripts within a user's web browser.
Remediation
References
Related Vulnerabilities
MySQL CVE-2014-6484 Vulnerability (CVE-2014-6484)
Oracle HTTP Server Other Vulnerability (CVE-2006-5349)
WordPress Plugin BulletProof Security Cross-Site Scripting (.52.4)
WordPress Plugin Connections Business Directory CSV Injection (9.6)
OpenSSL Resource Management Errors Vulnerability (CVE-2016-6304)