CVE-2022-28888
Spryker Commerce OS 1.4.2 allows Remote Command Execution.
9.8CVSS
9.6AI Score
0.058EPSS
CVE-2023-27568
SQL injection vulnerability inSpryker Commerce OS 0.9 that allows for access to sensitive data via customer/order?orderSearchForm[searchText]=
8.8CVSS
9.5AI Score
0.002EPSS