Vulnerabilities in aimeos
12 resultsCVE-2024-37295HIGHAimeos Core remote code execution in web server contextEPSS 0.6%CVE-2024-37296MEDIUMAimeos HTML client vulnerable to digital products download without proper payment status checkEPSS 0.5%CVE-2024-38516HIGHAimeos HTML client may potentially reveal sensitive information in error logEPSS 0.5%CVE-2024-39322MEDIUMaimeos/ai-admin-jsonadm improper access control vulnerability allows editors to remove required recordsEPSS 0.5%CVE-2024-39319MEDIUMaimeos/ai-controller-frontend has IDOR vulnerability in account profile pageEPSS 0.5%CVE-2024-39323HIGHaimeos/ai-admin-graphql improper access control vulnerability allows an editor to modify admin accountEPSS 0.4%CVE-2024-37294MEDIUMAimeos denial of service vulnerability in SaaS and marketplace setupsEPSS 0.4%CVE-2024-39325MEDIUMaimeos/ai-controller-frontend doesn't reset payment status in basketEPSS 0.4%CVE-2024-39324LOWaimeos/ai-admin-graphql improper access control vulnerability allows editors to manage own servicesEPSS 0.4%CVE-2024-47173MEDIUMAimeos GraphQL API admin interface denial of service vulnerability in SaaS and marketplace setupsEPSS 0.3%CVE-2021-47763HIGHAimeos Laravel ecommerce platform 2021.10 LTS - 'sort' SQL injectionEPSS 0.3%CVE-2025-66468HIGHAimeos GrapesJS CMS extension possible stores XSS exploitable by authenticated editorsEPSS 0.2%