Skip to main content

Storefront Api

1 CVEs product

Monthly

CVE-2020-11883 npm MEDIUM POC PATCH THREAT This Month

In Divante vue-storefront-api through 1.11.1 and storefront-api through 1.0-rc.1, as used in VueStorefront PWA, unexpected HTTP requests lead to an exception that discloses the error stack trace,. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Node.js Information Disclosure Storefront Api Vue Storefront Api
NVD GitHub
CVSS 3.1
5.3
EPSS
15.2%
EPSS 15% CVSS 5.3
MEDIUM POC PATCH THREAT This Month

In Divante vue-storefront-api through 1.11.1 and storefront-api through 1.0-rc.1, as used in VueStorefront PWA, unexpected HTTP requests lead to an exception that discloses the error stack trace,. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Node.js Information Disclosure Storefront Api +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy