2018-04-26 19:00:00
mitre
PUBLISHED
An XSS issue was discovered in VirtueMart before 3.2.14. All the textareas in the backend of the plugin can be closed by simply adding to the value and saving the product/config. By editing back the product/config, the editors browser will execute everything after the , leading to a possible XSS.