Aimeos ≫ Aimeos Frontend Controller

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

5.3

CVE-2024-39319

EPSS 0.31%
Published 26.09.2024 16:15:07
Last modified 05.03.2025 14:53:25

aimeos/ai-controller-frontend is the Aimeos frontend controller package for e-commerce projects. Prior to versions 2024.4.2, 2023.10.9, 2022.10.8, 2021.10.8, and 2020.10.15, an insecure direct object reference allows an attacker to disable subscripti...

5.3

CVE-2024-39325

EPSS 0.67%
Published 02.07.2024 21:15:11
Last modified 21.11.2024 09:27:28

aimeos/ai-controller-frontend is the Aimeos frontend controller. Prior to versions 2024.04.2, 2023.10.9, 2022.10.8, 2021.10.8, and 2020.10.15, aimeos/ai-controller-frontend doesn't reset the payment status of a user's basket after the user completes...