Smartstore Smartstorenet — known CVE vulnerabilities
Every CVE whose affected-product data names Smartstore Smartstorenet, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2020-36364 — CVSS 9.1 (critical): An issue was discovered in Smartstore (aka SmartStoreNET) before 4.1.0. Administration/Controllers/ImportController.cs allows path…
CVE-2020-27996 — CVSS 8.8 (high): An issue was discovered in SmartStoreNET before 4.0.1. It does not properly consider the need for a CustomModelPartAttribute decoration in…
CVE-2020-27997 — CVSS 8.8 (high): An issue was discovered in SmartStoreNET before 4.1.0. Lack of Cross Site Request Forgery (CSRF) protection may lead to elevation of…