Vulnerability Details CVE-2022-42236
A Stored XSS issue in Merchandise Online Store v.1.0 allows to injection of Arbitrary JavaScript in edit account form.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.5%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2022-42236
-
cpe:2.3:a:merchandise_online_store_project:merchandise_online_store:1.0