Lucene search

GitHub Advisory DatabaseGHSA-2JC6-3FHJ-8Q84

HistoryOct 10, 2023 - 9:10 p.m.

OroCommerce Cross-site Scripting vulnerability in add note dialog of Shopping List line item

2023-10-1021:10:28

CWE-79

GitHub Advisory Database

github.com

orocommerce

add note

shopping list

cross-site scripting

vulnerability

CVSS3

6.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:N

EPSS

0.001

Percentile

18.6%

JSON

Impact

The JS payload added to the product name may be executed at the storefront when adding a note to the shopping list line item containing a vulnerable product.
An attacker should be able to edit a product in the admin area and force a user to add this product to Shopping List and click add a note for it.

Affected configurations

Vulners

Node

orocommerceRange5.1.0–5.1.1

orocommerceRange5.0.0–5.0.11

orocommerceRange4.2.0–4.2.10

orocommerceRange4.1.0–4.1.13

VendorProductVersionCPE
orocommerce*cpe:2.3:a:oro:commerce:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oro	commerce	*	cpe:2.3:a:oro:commerce::::::::

References

github.com/advisories/GHSA-2jc6-3fhj-8q84

github.com/oroinc/orocommerce/security/advisories/GHSA-2jc6-3fhj-8q84

nvd.nist.gov/vuln/detail/CVE-2022-35950

CVSS3

6.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:N

EPSS

0.001

Percentile

18.6%

JSON

Related for GHSA-2JC6-3FHJ-8Q84