CVE-2020-15269

Posted on 2020년 10월 21일2020년 10월 21일 by admin

CVE-2020-15269

In Spree before versions 3.7.11, 4.0.4, or 4.1.11, expired user tokens could be used to access Storefront API v2 endpoints. The issue is patched in versions 3.7.11, 4.0.4 and 4.1.11. A workaround without upgrading is described in the linked advisory.

Source: CVE-2020-15269

답글 남기기 응답 취소