Browse all 2 CVE security advisories affecting evershopcommerce. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-28213 | EverShop Vulnerable to Arbitrary Customer Account Takeover via Exposure of Password Reset Token in API Response — evershopCWE-200 | 9.8 | Critical | 2026-02-26 |
| CVE-2026-25993 | EverShop has a Second-Order SQL Injection in URL Rewrite Processing Derived from Category URL Keys — evershopCWE-89 | 9.8AI | CriticalAI | 2026-02-10 |
This page lists every published CVE security advisory associated with evershopcommerce. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.