Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows malicious users to inject JS through the "specials_type_name[1]" parameter, potentially leading to unauthorized execution of scripts within a user's web browser.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
oscommerce oscommerce 4.12.56860 |