cleantalk
Vulnerabilities and Security Researches

Prodigy Commerce, CVE-2024-54250

CVE, Research URL

CVE-2024-54250

Home page URL

Security reports for Prodigy Commerce

Application

Prodigy Commerce

Published on
Dec 13, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Prodigy Commerce Prodigy Commerce allows DOM-Based XSS.This issue affects Prodigy Commerce: from n/a through 3.0.8.
Affected versions
max 3.0.9.
Status
vulnerable
Previous vulnerability researches
Prodigy Commerce (CVE-2024-54251) , Dec 11, 2024
Prodigy Commerce (CVE-2026-0926) , Apr 15, 2026
Prodigy Commerce (CVE-2024-54250) , Dec 15, 2024
New vulnerability
Simple Ajax Chat – Add a Fast, Secure Chat Box (CVE-2026-2987) , Apr 16, 2026
Simple Ajax Chat – Add a Fast, Secure Chat Box (CVE-2026-3075) , Apr 16, 2026
BuddyHolis ListSearch (CVE-2026-1853) , Apr 16, 2026
Font Pairing Preview For Landing Pages (CVE-2026-1086) , Apr 16, 2026
MMA Call Tracking (CVE-2026-1215) , Apr 16, 2026