Mrplugins CVEs and Security Vulnerabilities

Filtered by vendor Mrplugins Subscriptions

Switch to Advanced Search (Beta)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-50941	1 Mrplugins	1 Bootcommerce	2026-02-03	6.4 Medium
BootCommerce 3.2.1 contains persistent input validation vulnerabilities that allow remote attackers to inject malicious script code through guest order checkout input fields. Attackers can exploit unvalidated input parameters to execute arbitrary scripts, potentially leading to session hijacking, phishing attacks, and application module manipulation.

Page 1 of 1.