Every CVE whose affected-product data names Smartstore, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-32607 — CVSS 9.8 (critical): An issue was discovered in Smartstore (aka SmartStoreNET) through 4.1.1. Views/PrivateMessages/View.cshtml does not call…
CVE-2021-32608 — CVSS 9.8 (critical): An issue was discovered in Smartstore (aka SmartStoreNET) through 4.1.1. Views/Boards/Partials/_ForumPost.cshtml does not call…
CVE-2020-15243 — CVSS 9.1 (critical): Affected versions of Smartstore have a missing WebApi Authentication attribute. This vulnerability affects Smartstore shops in version…