Description
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "name" parameter, potentially leading to unauthorized execution of scripts within a user's web browser.
Remediation
References
Related Vulnerabilities
Moodle Resource Management Errors Vulnerability (CVE-2015-5332)
Restlet Framework Deserialization of Untrusted Data Vulnerability (CVE-2013-4271)
MySQL CVE-2021-35648 Vulnerability (CVE-2021-35648)
MySQL Other Vulnerability (CVE-2006-1516)
WordPress Plugin Spreadsheet (wpSS) Cross-Site Scripting (0.62)