A Cross Site Scripting (XSS) vulnerability exists in Exrick XMall Admin Panel as of 11/7/2021 via the GET parameter in product-add.jsp.
References
Link | Resource |
---|---|
http://exrick.com | Not Applicable URL Repurposed |
https://github.com/Exrick/xmall | Third Party Advisory |
https://github.com/Exrick/xmall/blob/b146cceb21ca42d4237f31dbd7af5ced49048a56/xmall-manager-web/src/main/webapp/WEB-INF/jsp/product-add.jsp#L38 | Patch Third Party Advisory |
https://github.com/Exrick/xmall/blob/b146cceb21ca42d4237f31dbd7af5ced49048a56/xmall-manager-web/src/main/webapp/WEB-INF/jsp/product-add.jsp#L4 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-04-07T18:09:44
Updated: 2022-04-07T18:09:44
Reserved: 2021-11-08T00:00:00
Link: CVE-2021-43432
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-07T19:15:07.917
Modified: 2024-02-14T01:17:43.863
Link: CVE-2021-43432
JSON object: View
Redhat Information
No data.
CWE