Security Advisory

CVE-2021-42193

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-03 00:00:00
Last updated 2025-10-03 19:02:31
Assigner mitre
State PUBLISHED

Description

nopCommerce 4.40.3 is vulnerable to XSS in the Product Name at /Admin/Product/Edit/[id]. Each time a user views the product in the shop, the XSS payload fires.