Security Advisory

CVE-2022-50941

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-01 12:15:52

Last updated 2026-02-03 16:41:17

Assigner VulnCheck

State PUBLISHED

Description

BootCommerce 3.2.1 contains persistent input validation vulnerabilities that allow remote attackers to inject malicious script code through guest order checkout input fields. Attackers can exploit unvalidated input parameters to execute arbitrary scripts, potentially leading to session hijacking, phishing attacks, and application module manipulation.

← Browse all CVEs View on cve.org ↗