CVE-2025-22383 – Optimizely Configured Commerce Email Markup Injection

1月 4, 2025
3:16 am

CVE ID : CVE-2025-22383

Published : Jan. 4, 2025, 2:15 a.m. | 1 hour, 1 minute ago

Description : An issue was discovered in Optimizely Configured Commerce before 5.2.2408. A medium-severity input validation issue exists in the Commerce B2B application, affecting the Contact Us functionality. This allows visitors to send e-mail messages that could contain unfiltered HTML markup in specific scenarios.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-22383 – Optimizely Configured Commerce Email Markup Injection

Elvescore.io

Recent Posts

CVE-2024-11356 – Tourmaster WordPress Cross-Site Scripting (XSS) Vulnerability

CVE-2024-11849 – Pods WordPress Stored Cross-Site Scripting (XSS)

CVE-2024-12302 – Icegram Engage Stored Cross-Site Scripting Vulnerability

CVE-2024-12311 – Icegram Express WordPress Plugin SQL Injection Vulnerability

CVE-2024-20105 – Apache Maven m4u Out-of-Bounds Write Privilege Escalation Vulnerability

CVE-2024-20140 – Apache Power Missing Bounds Check Privilege Escalation Vulnerability

CVE-2025-22383 – Optimizely Configured Commerce Email Markup Injection

CVE-2025-22383 – Optimizely Configured Commerce Email Markup Injection