PKSA-hqcx-w8t7-5h7y Security Advisory
-
[MEDIUM] OroCommerce vulnerable to XSS when adding class name to Selector Manager on pages that use GrapeJS editor
PKSA-hqcx-w8t7-5h7y GHSA-6f85-3f8q-qc94
Affected package: oro/commerce
Affected version: >=5.0,<5.0.4
Reported by:
GitHub