CNNVD-202510-002 Information
Oct 01, 2025
cve
CNNVD ID
CNNVD-202510-002
Related CVE
- CNNVD Published: 2025-10-01
Description (Chinese)
nopCommerce是nopCommerce公司的一套开源的通用电子商务平台。 nopCommerce 4.40.3版本存在安全漏洞,该漏洞源于产品名称输入清理不当,可能导致跨站脚本攻击。
Description (English)
NopCommerce is an open-source common e-commerce platform for noopCommerce. There is a security loophole in version 4.40.3 of the nopCommerce, which stems from the miscleaning of product names and could lead to cross-site script attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
nopCommerce
Published
2025-10-01
Last Modified
2026-02-24
References
http://nop.com http://nopcommerce.com https://cxsecurity.com/issue/WLB-2025100002
Share on: