pkg:Packagist/oro/commerce

All known vulnerabilities

• MEDIUM6.9CVE-2022-31037OroCommerce Cross site scripting vulnerability during shipping rule editing for UPS integration
  >= 4.1.0, < 5.0.6
• MEDIUM5.8CVE-2023-32065OroCommerce get-totals-for-checkout API endpoint returns unwanted data
  >= 4.2.0, <= 4.2.10
• MEDIUM4.8CVE-2022-35950OroCommerce Cross-site Scripting vulnerability in add note dialog of Shopping List line item
  >= 4.1.0, <= 4.1.13