In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsLearn about Cross-site Scripting (XSS) vulnerabilities in an interactive lesson.
Start learningUpgrade solidus_backend
to version 1.2.1 or higher.
solidus_backend
is an Admin interface for the Solidus e-commerce framework.
Affected versions of the package are vulnerable to Cross-site Scripting (XSS). An attacker can potentially inject html into the admin by registering with a specially crafted email. This could lead to injecting javascript into the admin and stealing the admin's API key and other credentials.
<>
You can read more about Cross-site Scripting (XSS)
on our blog.