Lucene search
K

45 matches found

NVD
NVD
added 2020/10/08 11:15 p.m.22 views

CVE-2020-15243

Affected versions of Smartstore have a missing WebApi Authentication attribute. This vulnerability affects Smartstore shops in version 4.0.0 & 4.0.1 which have installed and activated the Web API plugin. Users of Smartstore 4.0.0 and 4.0.1 must merge their repository with 4.0.x or overwrite the...

9.8CVSS0.01196EPSS
Exploits0References1
OSV
OSV
added 2020/10/08 11:15 p.m.16 views

CVE-2020-15243

Affected versions of Smartstore have a missing WebApi Authentication attribute. This vulnerability affects Smartstore shops in version 4.0.0 & 4.0.1 which have installed and activated the Web API plugin. Users of Smartstore 4.0.0 and 4.0.1 must merge their repository with 4.0.x or overwrite the...

9.8CVSS6.8AI score
Exploits0References1
Prion
Prion
added 2020/10/08 11:15 p.m.14 views

Authentication flaw

Affected versions of Smartstore have a missing WebApi Authentication attribute. This vulnerability affects Smartstore shops in version 4.0.0 & 4.0.1 which have installed and activated the Web API plugin. Users of Smartstore 4.0.0 and 4.0.1 must merge their repository with 4.0.x or overwrite the...

7.5CVSS9.3AI score0.01196EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/10/08 10:40 p.m.25 views

CVE-2020-15243 WebApi Authentication attribute missing in Smartstore

Affected versions of Smartstore have a missing WebApi Authentication attribute. This vulnerability affects Smartstore shops in version 4.0.0 & 4.0.1 which have installed and activated the Web API plugin. Users of Smartstore 4.0.0 and 4.0.1 must merge their repository with 4.0.x or overwrite the...

9.1CVSS9.4AI score0.01196EPSS
Exploits0References1
CVE
CVE
added 2020/10/08 10:40 p.m.71 views

CVE-2020-15243

CVE-2020-15243 affects Smartstore 4.0.0 and 4.0.1 with the Web API plugin installed and activated, where a missing WebApi Authentication attribute creates a vulnerability. The recommended remediations are to merge the 4.0.x branch (or overwrite the SmartStore.Web.Framework in the deployed shop’s ...

9.8CVSS9.4AI score0.01196EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder