Packagist (Composer) package
jsdecena/laracom
pkg:composer/jsdecena/laracom
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-0472 | — | < 2.0.9 | 2.0.9 | Feb 4, 2022 | Unrestricted Upload of File with Dangerous Type in Packagist jsdecena/laracom prior to v2.0.9. | ||
| CVE-2019-15489 | — | >= 1.4.11, < 1.5.0 | 1.5.0 | Aug 26, 2019 | laracom (aka Laravel FREE E-Commerce Software) 1.4.11 has search?q= XSS. |
- CVE-2022-0472Feb 4, 2022affected < 2.0.9fixed 2.0.9
Unrestricted Upload of File with Dangerous Type in Packagist jsdecena/laracom prior to v2.0.9.
- CVE-2019-15489Aug 26, 2019affected >= 1.4.11, < 1.5.0fixed 1.5.0
laracom (aka Laravel FREE E-Commerce Software) 1.4.11 has search?q= XSS.