Vulnerabilities > Sylius > Sylius > 1.10.9

DATE CVE VULNERABILITY TITLE RISK
2022-03-14 CVE-2022-24749 Cross-site Scripting vulnerability in Sylius
Sylius is an open source eCommerce platform.
network
sylius CWE-79
4.3
4.3
2022-03-14 CVE-2022-24743 Insufficient Session Expiration vulnerability in Sylius
Sylius is an open source eCommerce platform.
network
low complexity
sylius CWE-613
6.4
6.4
2022-03-14 CVE-2022-24742 Exposure of Resource to Wrong Sphere vulnerability in Sylius
Sylius is an open source eCommerce platform.
local
low complexity
sylius CWE-668
5.5
5.5
2022-03-14 CVE-2022-24733 Improper Restriction of Rendered UI Layers or Frames vulnerability in Sylius
Sylius is an open source eCommerce platform.
network
sylius CWE-1021
5.8
5.8