Vulnerability CVE-2024-27499
Published: 2024-03-01

Description:
Bagisto v1.5.1 is vulnerable for Cross site scripting(XSS) via png file upload vulnerability in product review option.

 References:
https://github.com/bagisto/bagisto/pull/9474
https://github.com/Ek-Saini/security/blob/main/xss-bagisto-v1.5.1
Copyright 2026, cxsecurity.com

 

Back to Top