Vulnerabilities > Spryker > Commerce OS > 0.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-04 | CVE-2023-27568 | SQL Injection vulnerability in Spryker Commerce OS 0.9 SQL injection vulnerability inSpryker Commerce OS 0.9 that allows for access to sensitive data via customer/order?orderSearchForm[searchText]= | 8.8 |