VYPR

StrongShop

by StrongShop

CVEs (2)

  • CVE-2024-37621HigJun 17, 2024
    risk 0.47cvss 7.2epss 0.01

    StrongShop v1.0 was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the component /shippingOptionConfig/index.blade.php.

  • CVE-2024-37619MedJun 17, 2024
    risk 0.40cvss 6.1epss 0.00

    StrongShop v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the spec_group_id parameter at /spec/index.blade.php.