An issue exists in ShopNx through 2017-11-17. The vulnerability allows a remote malicious user to upload any malicious file to a Node.js application. An attacker can upload a malicious HTML file that contains a JavaScript payload to steal a user's credentials.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
codenx shopnx |