Search by 
PKSA-7wm1-vvyh-k91c Security Advisory
-
[LOW] Craft Commerce is Vulnerable to Stored XSS while updating Order Status from Orders Table
PKSA-7wm1-vvyh-k91c CVE-2026-29173 GHSA-mqxf-2998-c6cp
Affected package: craftcms/commerce
Affected version: >=5.0.0,<=5.5.2|>=4.0.0,<=4.10.1
Reported by:
GitHub