Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mercredi 12 mai 2021

express-cart Package up to 1.1.10 on Node.js Product Option cross site scripting [Disputed]

A vulnerability, which was classified as problematic, was found in express-cart Package up to 1.1.10 on Node.js (JavaScript Library). This affects an unknown functionality of the component Product Option Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 59

x

Événements SSI