{"vulnerability": "cve-2022-28449", "sightings": [{"uuid": "f8005d53-5c4f-491f-aa96-52e420c4ee51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28449", "type": "seen", "source": "https://t.me/cibsecurity/41465", "content": "\u203c CVE-2022-28449 \u203c\n\nnopCommerce 4.50.1 is vulnerable to Cross Site Scripting (XSS). At Apply for vendor account feature, an attacker can upload an arbitrary file to the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-27T00:37:31.000000Z"}]}