VYPR

ai-controller-frontend

by Aimeos

Source repositories

CVEs (2)

  • CVE-2024-39319Sep 26, 2024
    risk 0.00cvss epss 0.00

    aimeos/ai-controller-frontend is the Aimeos frontend controller package for e-commerce projects. Prior to versions 2024.4.2, 2023.10.9, 2022.10.8, 2021.10.8, and 2020.10.15, an insecure direct object reference allows an attacker to disable subscriptions and reviews of another…

  • CVE-2024-39325Jul 2, 2024
    risk 0.00cvss epss 0.00

    aimeos/ai-controller-frontend is the Aimeos frontend controller. Prior to versions 2024.04.2, 2023.10.9, 2022.10.8, 2021.10.8, and 2020.10.15, aimeos/ai-controller-frontend doesn't reset the payment status of a user's basket after the user completes a purchase. Versions…