Vulnerability Details CVE-2024-50677
A cross-site scripting (XSS) vulnerability in OroPlatform CMS v5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.3%
CVSS Severity
CVSS v3 Score 6.1
References
Products affected by CVE-2024-50677
-
cpe:2.3:a:oroinc:oroplatform:5.1.0