CVE-2023-46498 | EverShop NPM up to 1.0.0-rc.7 route.json information disclosure

Posted by Angelo Barbosa | Dec 8, 2023 | CVE

A vulnerability classified as problematic has been found in EverShop NPM up to 1.0.0-rc.7. This affects an unknown part of the file /deleteCustomer/route.json. The manipulation leads to information disclosure.

This vulnerability is uniquely identified as CVE-2023-46498. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-46498 | EverShop NPM up to 1.0.0-rc.7 route.json information disclosure

Related Posts

CVE-2024-22437 | HPE MSA SAN Storage VSS Provider and CAPI Proxy Software unquoted search path

CVE-2023-52082 | Lychee up to 5.0.1 sql injection (GHSA-rjwv-5j3m-p5x4)

CVE-2024-4588 | DedeCMS 5.7 /src/dede/mytag_add.php cross-site request forgery

CVE-2024-45738 | Splunk Enterprise up to 9.1.5/9.2.2/9.3.0 information disclosure (SVD-2024-1008)