oroinc/orocommerce-application

Releases207

Frequency2 weeks 4 days

Last Release 21 days ago

Stars351

OroCommerce - an open-source Business to Business Commerce platform.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-50677 ↗	Dec 6, 2024Friday, 6 December 2024, 16:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in OroPlatform CMS v5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search parameter.