Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:34 a.m.8 views

CVE-2019-7865

A cross-site request forgery CSRF vulnerability exists in the checkout cart item of Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This could be exploited at the time of editing or configuration...

8.8CVSS6.8AI score0.00497EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5604

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00497EPSS
Exploits0References5
OSV
OSV
added 2023/01/17 9:27 p.m.21 views

CVE-2023-22730 Improper Input Validation of Clearance sale in cart

Shopware is an open source commerce platform based on Symfony Framework and Vue js. In affected versions It was possible to put the same line item multiple times in the cart using the AP. The Cart Validators checked the line item's individuality and the user was able to bypass quantity limits in...

5.3CVSS7.4AI score0.00659EPSS
Exploits0References5
OSV
OSV
added 2022/05/24 5:36 p.m.22 views

GHSA-3J6M-M5V5-9785 OpenCart Cross-Site Request Forgery (CSRF)

Cross Site Request Forgery CSRF in CART option in OpenCart Ltd. Opencart CMS 3.0.3.6 allows attacker to add cart items via Add to cart...

3.5CVSS3.9AI score0.00384EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/02/21 12:0 a.m.22 views

Business Logic Errors in microweber

Microweber prior to 1.2.11 can suffer from insecure direct object references. A malicious actor can remove items from a victim's cart...

9.4CVSS3.7AI score0.00911EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder