Security Advisory

CVE-2022-23059

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-29 10:25:09

Last updated 2024-09-16 23:10:36

Assigner Mend

State PUBLISHED

Description

A Stored Cross Site Scripting (XSS) vulnerability exists in Shopizer versions 2.0 through 2.17.0 via the “Manage Images” tab, which allows an attacker to upload a SVG file containing malicious JavaScript code.

← Browse all CVEs View on cve.org ↗