{"uuid": "410b27b9-b716-4fd7-bbdf-ca92bf1ed31a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28448", "type": "seen", "source": "https://t.me/cibsecurity/41464", "content": "\u203c CVE-2022-28448 \u203c\n\nnopCommerce 4.50.1 is vulnerable to Cross Site Scripting (XSS). An attacker (role customer) can inject javascript code to First name or Last name at Customer Info.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-27T00:37:30.000000Z"}