VYPR

Maven package

com.shopizer/sm-core-model

pkg:maven/com.shopizer/sm-core-model

Vulnerabilities (1)

  • CVE-2020-11007Apr 16, 2020
    affected < 2.11.0fixed 2.11.0

    In Shopizer before version 2.11.0, using API or Controller based versions negative quantity is not adequately validated hence creating incorrect shopping cart and order total. This vulnerability makes it possible to create a negative total in the shopping cart. This has been patc