Description
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "translation_value[1]" parameter, potentially leading to unauthorized execution of scripts within a user's web browser.
Remediation
References
Related Vulnerabilities
WordPress Plugin Maps Widget for Google Maps-Google Maps Builder Cross-Site Scripting (2.30)
WordPress Plugin Content Blocks (Custom Post Widget) Local File Inclusion (3.3.0)
WordPress Plugin WP Js External Link Info Cross-Site Scripting (1.21)
Undertow Uncontrolled Resource Consumption Vulnerability (CVE-2021-3690)