Lucene search
China National Vulnerability DatabaseCNVD-2022-77958HistoryMay 08, 2022 - 12:00 a.m.
E-Commerce Website Cross-Site Scripting Vulnerability
2022-05-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.001 Low
EPSS
Percentile
24.8%
A cross-site scripting vulnerability exists in E-Commerce Website version 1.0, which originates from a cross-site scripting (XSS) vulnerability in /public/admin/index.php?add_product that allows an attacker to inject a specially crafted payload into the product title text field by injecting specially crafted payload. An attacker could use this vulnerability to execute arbitrary Web script or HTML.
| CPE | Name | Operator | Version |
|---|---|---|---|
| e-commerce website e-commerce website | eq | 1.0 |
Related
cve
cve
CVE-2022-27330
2022-05-03 20:15:09
cvelist
cvelist
CVE-2022-27330
2022-05-03 20:01:53
prion
prion
Cross site scripting
2022-05-03 20:15:00
nvd
nvd
CVE-2022-27330
2022-05-03 20:15:09