๐Ÿ” CVE Alert

CVE-2023-3294

HIGH 7.6

Cross-site Scripting (XSS) - DOM in saleor/react-storefront

CVSS Score
7.6
EPSS Score
0.0%
EPSS Percentile
0th

Cross-site Scripting (XSS) - DOM in GitHub repository saleor/react-storefront prior to c29aab226f07ca980cc19787dcef101e11b83ef7.

CWE CWE-79
Vendor saleor
Product saleor/react-storefront
Published Jun 16, 2023
Last Updated Dec 17, 2024
Stay Ahead of the Next One

Get instant alerts for saleor saleor/react-storefront

Be the first to know when new high vulnerabilities affecting saleor saleor/react-storefront are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L

Affected Versions

saleor / saleor/react-storefront
unspecified < c29aab226f07ca980cc19787dcef101e11b83ef7

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
huntr.dev: https://huntr.dev/bounties/9d308ebb-4289-411f-ac22-990383d98932 github.com: https://github.com/saleor/react-storefront/commit/c29aab226f07ca980cc19787dcef101e11b83ef7