CVE-2024-50945 | THREATINT

Description

An improper access control vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f, allowing users to submit reviews without verifying if they have purchased the product.

PUBLISHED Reserved 2024-10-28 | Published 2024-12-27 | Updated 2025-03-18 | Assigner mitre

References

github.com/simplcommerce/SimplCommerce

www.simplcommerce.com/

github.com/AbdullahAlmutawa/CVE-2024-50945

cve.org (CVE-2024-50945)

nvd.nist.gov (CVE-2024-50945)

Download JSON