Impact In the Shopware CMS, the state handler for orders fails to sufficiently verify user authorizations for actions that modify the payment, delivery, and/or order status. Due to this inadequate imp ...
Continue Reading
January 18, 2024
Affected versions receive a &[u8] from the caller through a safe API, and pass it directly to the unsafe str::from_utf8_unchecked function. The behavior of ferris_says::say is undefined if the ...
Continue Reading
January 17, 2024
CVE-2024-22145 InstaWP Connect <= 0.1.0.8 - Missing Authorization to Arbitrary Options Update (Subscriber+) Description: The InstaWP Connect – 1-click WP Staging & Migration plugin fo ...
Continue Reading
January 17, 2024
Description The plugin is vulnerable to unauthorized modifcation of data due to a missing capability check on the saveApiKey() function hooked via admin_init in all versions up to, and including, 3.0. ...
Continue Reading
January 17, 2024
Impact In the Shopware CMS, the state handler for orders fails to sufficiently verify user authorizations for actions that modify the payment, delivery, and/or order status. Due to this inadequate imp ...
Continue Reading
January 17, 2024
Affected versions receive a &[u8] from the caller through a safe API, and pass it directly to the unsafe str::from_utf8_unchecked function. The behavior of ferris_says::say is undefined if the ...
Continue Reading
January 17, 2024
Impact The Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can ...
Continue Reading
January 17, 2024
Impact The Shopware application API contains a search functionality which enables users to search through information stored within their Shopware instance. The searches performed by this function can ...
Continue Reading
January 17, 2024
Back to Main
