exploitDog

CVE-2024-50945

Опубликовано: 27 дек. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An improper access control vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f, allowing users to submit reviews without verifying if they have purchased the product.

Ссылки

EPSS

Процентиль: 83%

0.01999

Низкий

7.5 High

CVSS3

Дефекты

CWE-284

Связанные уязвимости

GHSA-567c-gxmx-3pq9

CVSS3: 7.5

github

около 1 года назад

An improper access control vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f, allowing users to submit reviews without verifying if they have purchased the product.

EPSS

Процентиль: 83%

0.01999

Низкий

7.5 High

CVSS3

Дефекты

CWE-284