Description
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to inject JS through the "stock_indication_text[1]" parameter, potentially leading to unauthorized execution of scripts within a user's web browser.
Remediation
References
Related Vulnerabilities
WordPress 6.0.x Shortcode Execution (6.0 - 6.0.4)
Django Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-0305)
WebLogic CVE-2023-22089 Vulnerability (CVE-2023-22089)
WordPress Plugin WPE Indoshipping Multiple Remote File Inclusion Vulnerabilities (2.5.0)
Moodle Improper Input Validation Vulnerability (CVE-2012-6101)