Filtered by vendor Strongshop Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-37621 1 Strongshop 1 Strongshop 2024-11-21 7.2 High
StrongShop v1.0 was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the component /shippingOptionConfig/index.blade.php.
CVE-2024-37619 1 Strongshop 1 Strongshop 2024-11-21 7.6 High
StrongShop v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the spec_group_id parameter at /spec/index.blade.php.