CVE-2024-40633 | Sylius up to 1.12.18/1.13.3 on Symfony {id} information disclosure

Posted by Angelo Barbosa | Jul 17, 2024 | CVE

A vulnerability was found in Sylius up to 1.12.18/1.13.3 on Symfony. It has been classified as problematic. Affected is an unknown function of the file /api/v2/shop/adjustments/{id}. The manipulation leads to information disclosure.

This vulnerability is traded as CVE-2024-40633. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40633 | Sylius up to 1.12.18/1.13.3 on Symfony {id} information disclosure

Related Posts

CVE-2023-43999 | COLORFUL_laundry mini-app on Line 13.6.1 Channel Access Token information disclosure

CVE-2021-22533 | OpenText eDirectory 9.2.4.0000 log file

CVE-2024-1997 | Premium Addons Pro Plugin up to 2.9.12 on WordPress Messenger Chat Widget cross site scripting

CVE-2023-51446 | GLPI up to 10.0.11 ldap injection