VYPR
Moderate severityNVD Advisory· Published Apr 17, 2020· Updated Aug 4, 2024

CVE-2020-11883

CVE-2020-11883

Description

In Divante vue-storefront-api through 1.11.1 and storefront-api through 1.0-rc.1, as used in VueStorefront PWA, unexpected HTTP requests lead to an exception that discloses the error stack trace, with absolute file paths and Node.js module names.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
storefront-apinpm
< 1.0.0-rc31.0.0-rc3
vue-storefront-apinpm
< 1.12.01.12.0

Affected products

3

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.