📦

e-commerce_framework

Vendor: pimcore

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 0.01% Exploit Prob.
Latest CVE CVE-2024-21665 Jan 11

Security Vulnerability Index

Page 1 / 1
4.3 CVSS
CVE-2024-21665

ecommerce-framework-bundle is the Pimcore Ecommerce Framework Bundle. An authenticated and unauthorized user can access the back-office orders list and be able to query over the information returned. Access control and permissions are not being enforced. This vulnerability has been patched in version 1.0.10.

EPSS: 0.01%