VYPR
High severity7.5NVD Advisory· Published Dec 27, 2024· Updated Apr 15, 2026

CVE-2024-50945

CVE-2024-50945

Description

An improper access control vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f, allowing users to submit reviews without verifying if they have purchased the product.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Simplcommerce/Simplcommercereferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = commit 230310c8d7a0408569b292c5a805c459d47a1d8f

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.