Lucene search
GoogleOSV:GHSA-P2J7-6G9H-32XHHistoryMar 30, 2022 - 12:00 a.m.
Cross site scripting in Shopizer
2022-03-3000:00:27
Google
osv.dev
9
cross site scripting
shopizer
manage images
svg file
javascript code
EPSS
0.001
Percentile
21.4%
A Stored Cross Site Scripting (XSS) vulnerability exists in Shopizer versions v2.0.2 through v2.17.0 via the “Manage Images” tab, which allows an attacker to upload a SVG file containing malicious JavaScript code.
Related
nvd
nvd
CVE-2022-23059
2022-03-29 11:15:07
prion
prion
Cross site scripting
2022-03-29 11:15:00
osv
osv
CVE-2022-23059
2022-03-29 11:15:07
cvelist
cvelist
CVE-2022-23059 Shopizer - Stored XSS in Manage Images
2022-03-29 10:25:09
cve
cve
CVE-2022-23059
2022-03-29 11:15:07
github
github
Cross site scripting in Shopizer
2022-03-30 00:00:27