CVE-2025-65589

Publication date

2025-12-16 00:00:00

Family

mitre

State

PUBLISHED

Description

nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Attributes functionality.