Vulnerabilities > Spryker

DATE	CVE	VULNERABILITY TITLE	RISK
2023-05-04	CVE-2023-27568	SQL Injection vulnerability in Spryker Commerce OS 0.9 SQL injection vulnerability inSpryker Commerce OS 0.9 that allows for access to sensitive data via customer/order?orderSearchForm[searchText]= network low complexity spryker CWE-89	8.8
2022-07-13	CVE-2022-28888	OS Command Injection vulnerability in Spryker Cloud Commerce Spryker Commerce OS 1.4.2 allows Remote Command Execution. network low complexity spryker CWE-78 critical	9.8

Vulnerabilities > Spryker {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Spryker"}]}