Vulnerabilities > Oroinc > Orocommerce > 4.1.6

DATE CVE VULNERABILITY TITLE RISK
2023-10-09 CVE-2022-35950 Cross-site Scripting vulnerability in Oroinc Orocommerce
OroCommerce is an open-source Business to Business Commerce application.
network
low complexity
oroinc CWE-79
4.8
4.8
2022-10-18 CVE-2022-31037 Cross-site Scripting vulnerability in Oroinc Orocommerce
OroCommerce is an open-source Business to Business Commerce application.
network
low complexity
oroinc CWE-79
5.4
5.4