spree Security Advisories - Rubygems | Ecosyste.ms: Advisories

spree

A complete open source e-commerce solution with multi-store, multi-currency and multi-language capabilities

View on github.com · View on rubygems.org

Security Advisories for spree in rubygems

Moderate

over 3 years ago

Spree does not properly restrict the use of a hash to provide values for a model's attributes GSA_kwCzR0hTQS03aDQ4LW0zcnctdnIyN84AAft6

rubygems spree

Moderate

over 3 years ago

Spree uses a hardcoded hash value GSA_kwCzR0hTQS1nNDY2LTU3Z2gtY3Fmd84AAfty

rubygems spree

Moderate

over 3 years ago

Spree allows remote attackers to obtain sensitive information GSA_kwCzR0hTQS1od3J4LXdjNzUtbWdoN84AAV4o

rubygems spree

High

about 5 years ago

Ensure that doorkeeper_token is valid when authenticating requests in API v2 calls MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY4Y20tMzY0Zi1xOXFo

rubygems spree

Moderate

about 8 years ago

Spree Improper Input Validation vulnerability MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp4eDgtdjgzdi1yaHcz

rubygems spree

Filter by Severity

Moderate 4 High 1