KOA Shopify Auth

DATE	CVE	VULNERABILITY TITLE	RISK
2020-07-02	CVE-2020-8176	Cross-site Scripting vulnerability in Shopify Koa-Shopify-Auth 3.1.61/3.1.62 A cross-site scripting vulnerability exists in koa-shopify-auth v3.1.61-v3.1.62 that allows an attacker to inject JS payloads into the `shop` parameter on the `/shopify/auth/enable_cookies` endpoint. network low complexity shopify CWE-79	6.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.