CVE-2024-3579

Publication date

2024-05-14 08:51:53

Family

CERT-PL

State

PUBLISHED

Description

Open-source project Online Shopping System Advanced is vulnerable to Reflected Cross-Site Scripting (XSS). An attacker might trick somebody into using a crafted URL, which will cause a script to be run in users browser.