Security Advisory

CVE-2025-55998

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-08 00:00:00
Last updated 2025-09-29 17:22:16
Assigner mitre
State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability in Smart Search & Filter Shopify and BigCommerce apps allows a remote attacker to execute arbitrary JavaScript in the web browser of a user, by including a malicious payload into several filter parameter