CVE-2023-46498 | EverShop NPM up to 1.0.0-rc.7 route.json information disclosure

Posted by Angelo Barbosa | Dec 8, 2023 | CVE

A vulnerability classified as problematic has been found in EverShop NPM up to 1.0.0-rc.7. This affects an unknown part of the file /deleteCustomer/route.json. The manipulation leads to information disclosure.

This vulnerability is uniquely identified as CVE-2023-46498. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-46498 | EverShop NPM up to 1.0.0-rc.7 route.json information disclosure

Related Posts

CVE-2023-36644 | ITB-GmbH TradePro 9.5 printmail Plugin access control

CVE-2024-33998 | Moodle Participants Page User Name cross site scripting

CVE-2024-0659 | Easy Digital Downloads Plugin up to 3.2.6 on WordPress Pricing Options cross site scripting

CVE-2024-23557 | HCL Connections 7.0/8.0 information disclosure (KB0112488)