← Back to CVE List

CVE-2023-46942

Published: 2024-01-13T02:15Z
Last Modified: 2024-11-21T08:29Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Lack of authentication in NPM's package @evershop/evershop before version 1.0.0-rc.8, allows remote attackers to obtain sensitive information via improper authorization in GraphQL endpoints. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt