CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Evershop: >> Evershop >> 1.0.0 Security Vulnerabilities

CVE-2023-46498

An issue in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information and execute arbitrary code via the /deleteCustomer/route.json file.

CVSS Score

9.8

EPSS Score

0.013

Published

2023-12-08

CVE-2023-46499

Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.5 allows a remote attacker to obtain sensitive information via a crafted scripts to the Admin Panel.

CVSS Score

6.1

EPSS Score

0.001

Published

2023-12-08

Page 2

Vulnerabilities

Vulnerable Software

Evershop: >> Evershop >> 1.0.0 Security Vulnerabilities

Products

Pricing

Contact Us