Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

solidus — Vulnerabilities & Security Advisories 5

All 5 CVE vulnerabilities found in solidus, with AI-generated Chinese analysis, references, and POCs.

Vendor: solidusio

CVE IDTitleCVSSSeverityPublished
CVE-2024-4859 Solidus 跨站脚本漏洞 CWE-79 5.7 Medium2024-05-14
CVE-2022-31000 CSRF allows attacker to finalize/unfinalize order adjustments in solidus_backend CWE-352 2.3 Low2022-06-01
CVE-2021-43846 CSRF forgery protection bypass for Spree::OrdersController#populate CWE-352 5.3 Medium2021-12-20
CVE-2021-43805 ReDos vulnerability on guest checkout email validation CWE-1333 7.5 High2021-12-07
CVE-2020-15109 Ability to change order address without triggering address validations in solidus CWE-20 5.3 Medium2020-08-04

All 5 known CVE vulnerabilities affecting solidus with full Chinese analysis, references, and POCs where available.