Xos-shop Xos Shop System — known CVE vulnerabilities
Every CVE whose affected-product data names Xos-shop Xos Shop System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
- CVE-2021-37764 — CVSS 8.1 (high): Arbitrary File Deletion vulnerability in XOS-Shop xos_shop_system 1.0.9 via current_manufacturer_image parameter to /shop/admin/manufacturer…
- CVE-2021-46820 — CVSS 8.1 (high): Arbitrary File Deletion vulnerability in XOS-Shop xos_shop_system 1.0.9 via current_manufacturer_image parameter to /shop/admin/categories.p…