Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:1 a.m.8 views

CVE-2022-24733

Sylius is an open source eCommerce platform. Prior to versions 1.9.10, 1.10.11, and 1.11.2, it is possible for a page controlled by an attacker to load the website within an iframe. This will enable a clickjacking attack, in which the attacker's page overlays the target application's interface wi...

6.1CVSS6.5AI score0.00871EPSS
Exploits0References1
CVE
CVE
added 2022/03/14 6:50 p.m.104 views

CVE-2022-24733

Sylius (open-source eCommerce platform) has a clickjacking vulnerability in versions prior to 1.9.10, 1.10.11, and 1.11.2, where an attacker-controlled page could load the site in an iframe and overlay the interface. Root cause: missing X-Frame-Options header allowing framing. Impact: potential U...

6.1CVSS5.9AI score0.00871EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2022/03/14 6:50 p.m.7 views

CVE-2022-24733 Improper Restriction of Rendered UI Layers or Frames in Sylius

Sylius is an open source eCommerce platform. Prior to versions 1.9.10, 1.10.11, and 1.11.2, it is possible for a page controlled by an attacker to load the website within an iframe. This will enable a clickjacking attack, in which the attacker's page overlays the target application's interface wi...

6.1CVSS6AI score0.00871EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/03/14 6:50 p.m.30 views

CVE-2022-24733 Improper Restriction of Rendered UI Layers or Frames in Sylius

Sylius is an open source eCommerce platform. Prior to versions 1.9.10, 1.10.11, and 1.11.2, it is possible for a page controlled by an attacker to load the website within an iframe. This will enable a clickjacking attack, in which the attacker's page overlays the target application's interface wi...

6.1CVSS6.1AI score0.00871EPSS
Exploits0References4
Rows per page
Query Builder