CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

OSV•added 2024/07/02 9:21 p.m.•7 views

GHSA-8FJ2-587W-5WHR aimeos/ai-admin-jsonadm improper access control vulnerability allows editors to remove required records

Improper access control allows editors to remove admin group and locale configuration in Aimeos backend...

5.5CVSS5.3AI score0.00122EPSS

Exploits0References8

Cvelist•added 2024/07/02 8:19 p.m.•20 views

CVE-2024-39322 aimeos/ai-admin-jsonadm improper access control vulnerability allows editors to remove required records

aimeos/ai-admin-jsonadm is the Aimeos e-commerce JSON API for administrative tasks. In versions prior to 2020.10.13, 2021.10.6, 2022.10.3, 2023.10.4, and 2024.4.2, improper access control allows editors to remove admin group and locale configuration in the Aimeos backend. Versions 2020.10.13,...

5.5CVSS0.00122EPSS

Exploits0References6

Positive Technologies•added 2024/07/02 12:0 a.m.•4 views

PT-2024-28447 · Aimeos · Aimeos/Ai-Admin-Jsonadm

Name of the Vulnerable Software and Affected Versions: aimeos/ai-admin-jsonadm versions prior to 2020.10.13 aimeos/ai-admin-jsonadm versions prior to 2021.10.6 aimeos/ai-admin-jsonadm versions prior to 2022.10.3 aimeos/ai-admin-jsonadm versions prior to 2023.10.4 aimeos/ai-admin-jsonadm versions...

5.5CVSS6.8AI score0.00122EPSS

Exploits0References12