Spryker Commerce OS 1.0 SQL Injection Vulnerability

An SQL injection vulnerability affecting Spryker-based webshops was discovered in the order history search form. It can be exploited by authenticated attackers in order to retrieve information from the database e.g. customer and administrator login information, order details, etc.. Depending on t...

verkooppunten.nl XSS vulnerability

Open Bug Bounty ID: OBB-531670 Description| Value ---|--- Affected Website:| verkooppunten.nl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...