Shodan
Vulnerabilities
Vulnerable Software
Evershop:  >> Evershop  Security Vulnerabilities
CVE-2023-46497
Directory Traversal vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information via a crafted request to the mkdirSync function in the folderCreate/createFolder.js endpoint.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-12-08
CVE-2023-46498
An issue in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information and execute arbitrary code via the /deleteCustomer/route.json file.
CVSS Score
9.8
EPSS Score
0.013
Published
2023-12-08
CVE-2023-46499
Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.5 allows a remote attacker to obtain sensitive information via a crafted scripts to the Admin Panel.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-12-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved