Saleor React-storefront — known CVE vulnerabilities
Every CVE whose affected-product data names Saleor React-storefront, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-3294 — CVSS 6.1 (medium): Cross-site Scripting (XSS) - DOM in GitHub repository saleor/react-storefront prior to c29aab226f07ca980cc19787dcef101e11b83ef7.
CVE-2024-29036 — CVSS 4.3 (medium): Saleor Storefront is software for building e-commerce experiences. Prior to commit 579241e75a5eb332ccf26e0bcdd54befa33f4783, when any user…