CVE-2024-37296
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-37296
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-37296.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-37296
- Aliases
- Published
- 2024-06-11T15:16:09Z
- Modified
- 2024-11-22T06:49:33.041983Z
- Summary
- [none]
- Details
-
The Aimeos HTML client provides Aimeos HTML components for e-commerce projects. Starting in version 2020.04.1 and prior to versions 2020.10.27, 2021.10.21, 2022.10.12, 2023.10.14, and 2024.04.5, digital downloads sold in online shops can be downloaded without valid payment, e.g. if the payment didn't succeed. Versions 2020.10.27, 2021.10.21, 2022.10.12, 2023.10.14, and 2024.04.5 fix this issue.
- References
-
- https://github.com/aimeos/ai-client-html/security/advisories/GHSA-v4g2-cm5v-cxv7
- https://github.com/aimeos/ai-client-html/commit/12d8aad1a373bf9d350872501adec3e222164f83
- https://github.com/aimeos/ai-client-html/commit/5a7249769142b3ce70959ab1fb70c7e7c251e214
- https://github.com/aimeos/ai-client-html/commit/6460ffe8f4929d864164aa96c5b49eca5326d975
- https://github.com/aimeos/ai-client-html/commit/7f01d2f4fbc67f5231fd84adeb835d28252b8409
- https://github.com/aimeos/ai-client-html/commit/fc611ff9a57e421d0ad9d99346b561cea515c5f0
Affected packages
Git / github.com/aimeos/ai-client-html
Affected ranges
- Type
- GIT
- Repo
- https://github.com/aimeos/ai-client-html
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedFixedFixedFixedFixed
Affected versions
2016.*
2016.07.1
2017.*
2017.01.1
2017.07.1
2018.*
2018.01.1
2019.*
2019.04.1
2020.*
2020.10.1
2020.10.10
2020.10.11
2020.10.12
2020.10.13
2020.10.14
2020.10.15
2020.10.16
2020.10.17
2020.10.18
2020.10.19
2020.10.2
2020.10.20
2020.10.21
2020.10.22
2020.10.23
2020.10.24
2020.10.25
2020.10.26
2020.10.3
2020.10.4
2020.10.5
2020.10.6
2020.10.7
2020.10.8
2020.10.9
2021.*
2021.10.1
2021.10.10
2021.10.11
2021.10.12
2021.10.13
2021.10.14
2021.10.15
2021.10.16
2021.10.17
2021.10.18
2021.10.19
2021.10.2
2021.10.20
2021.10.3
2021.10.4
2021.10.5
2021.10.6
2021.10.7
2021.10.8
2021.10.9
2022.*
2022.10.1
2022.10.10
2022.10.11
2022.10.2
2022.10.3
2022.10.4
2022.10.5
2022.10.6
2022.10.7
2022.10.8
2022.10.9
2023.*
2023.10.1
2023.10.10
2023.10.11
2023.10.12
2023.10.13
2023.10.2
2023.10.3
2023.10.4
2023.10.5
2023.10.6
2023.10.7
2023.10.8
2023.10.9
2024.*
2024.04.1
2024.04.2
2024.04.3
2024.04.4