Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Webkul Subscribe
Filtered by product Bagisto
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-16403 1 Webkul 1 Bagisto 2020-08-24 6.5 MEDIUM 8.8 HIGH
In Webkul Bagisto before 0.1.5, the functionalities for customers to change their own values (such as address, review, orders, etc.) can also be manipulated by other customers.
CVE-2019-14933 1 Webkul 1 Bagisto 2019-08-14 6.8 MEDIUM 8.8 HIGH
Bagisto 0.1.5 allows CSRF under /admin URIs.