Commerce Custom Order Status < 7.x-1.1 is vulnerable to Administrator+ Cross Site Scripting (XSS) vulnerability

Administrator

Published
2018-07-10

Administrator+ Cross Site Scripting (XSS) vulnerability

Score:5.9

Severity:Medium

Version:< 7.x-1.1

There is a patch available in v1.2 and we strongly recommend you update to this version as soon as possible.