Supersmart Supersmart.me - Walk Through — known CVE vulnerabilities
Every CVE whose affected-product data names Supersmart Supersmart.me - Walk Through, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-34768 — CVSS 6.5 (medium): insert HTML / js code inside input how to get to the vulnerable input : Workers > worker nickname > inject in this input the code.
CVE-2022-30628 — CVSS 4.8 (medium): It was possible to download all receipts without authentication. Must first access the API https://XXXX.supersmart.me/services/v4/customer/s…