@vendure/core vulnerabilities

A modern, headless ecommerce framework

latest version

3.3.5

latest non vulnerable version

3.4.0-minor-202506250934

first published

6 years ago

latest version published

8 days ago

licenses detected

GPL-3.0
>=3.0.0-next.0
MIT
>=0.1.0-alpha.1 <3.0.0-next.0

View core package health on Snyk Advisor (opens in a new tab)

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the @vendure/core package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Improper Input Validation	<2.1.3
M Cross-site Request Forgery (CSRF)	<2.0.3
M Cross-site Scripting (XSS)	<1.5.2

Package versions

1 - 100 of 315 Results

version	published	direct vulnerabilities
3.4.0-minor-202506250934	25 Jun, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507050232	5 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507041203	4 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507040234	4 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507031620	3 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507031258	3 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507031127	3 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507030835	3 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507030732	3 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507030648	3 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507030234	3 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507021511	2 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507020959	2 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507020234	2 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507011151	1 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507010922	1 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507010731	1 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202507010243	1 Jul, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202506290242	29 Jun, 2025	0 C 0 H 0 M 0 L
3.3.6-master-202506280232	28 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5	27 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506270234	27 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506260234	26 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506251318	25 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506251305	25 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506250727	25 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506250724	25 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506250629	25 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506241446	24 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506241318	24 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506241144	24 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506231200	23 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506231131	23 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506202132	20 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506201437	20 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506201219	20 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506201217	20 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506201216	20 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506191041	19 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506191033	19 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506190846	19 Jun, 2025	0 C 0 H 0 M 0 L
3.3.5-master-202506190627	19 Jun, 2025	0 C 0 H 0 M 0 L
3.3.4	19 Jun, 2025	0 C 0 H 0 M 0 L
3.3.4-master-202506190557	19 Jun, 2025	0 C 0 H 0 M 0 L
3.3.4-master-202506190520	19 Jun, 2025	0 C 0 H 0 M 0 L
3.3.4-master-202506181834	18 Jun, 2025	0 C 0 H 0 M 0 L
3.3.4-master-202506181504	18 Jun, 2025	0 C 0 H 0 M 0 L
3.3.4-master-202506181256	18 Jun, 2025	0 C 0 H 0 M 0 L
3.3.4-master-202506181251	18 Jun, 2025	0 C 0 H 0 M 0 L
3.3.4-master-202506180847	18 Jun, 2025	0 C 0 H 0 M 0 L
3.3.3	6 Jun, 2025	0 C 0 H 0 M 0 L
3.3.2	28 May, 2025	0 C 0 H 0 M 0 L
3.3.1	20 May, 2025	0 C 0 H 0 M 0 L
3.3.0	12 May, 2025	0 C 0 H 0 M 0 L
3.2.4	5 May, 2025	0 C 0 H 0 M 0 L
3.2.3	17 Apr, 2025	0 C 0 H 0 M 0 L
3.2.2	3 Apr, 2025	0 C 0 H 0 M 0 L
3.2.1	3 Apr, 2025	0 C 0 H 0 M 0 L
3.2.0	2 Apr, 2025	0 C 0 H 0 M 0 L
3.1.8	31 Mar, 2025	0 C 0 H 0 M 0 L
3.1.7	6 Mar, 2025	0 C 0 H 0 M 0 L
3.1.6	6 Mar, 2025	0 C 0 H 0 M 0 L
3.1.5	6 Mar, 2025	0 C 0 H 0 M 0 L
3.1.4	28 Feb, 2025	0 C 0 H 0 M 0 L
3.1.3	14 Feb, 2025	0 C 0 H 0 M 0 L
3.1.2	22 Jan, 2025	0 C 0 H 0 M 0 L
3.1.1	17 Dec, 2024	0 C 0 H 0 M 0 L
3.1.0	4 Dec, 2024	0 C 0 H 0 M 0 L
3.1.0-next.4	3 Dec, 2024	0 C 0 H 0 M 0 L
3.1.0-next.3	4 Oct, 2024	0 C 0 H 0 M 0 L
3.1.0-next.2	11 Sep, 2024	0 C 0 H 0 M 0 L
3.1.0-next.1	10 Sep, 2024	0 C 0 H 0 M 0 L
3.1.0-next.0	21 Aug, 2024	0 C 0 H 0 M 0 L
3.0.8	3 Dec, 2024	0 C 0 H 0 M 0 L
3.0.7	2 Dec, 2024	0 C 0 H 0 M 0 L
3.0.6	15 Nov, 2024	0 C 0 H 0 M 0 L
3.0.5	15 Oct, 2024	0 C 0 H 0 M 0 L
3.0.4	4 Oct, 2024	0 C 0 H 0 M 0 L
3.0.3	11 Sep, 2024	0 C 0 H 0 M 0 L
3.0.2	10 Sep, 2024	0 C 0 H 0 M 0 L
3.0.1	21 Aug, 2024	0 C 0 H 0 M 0 L
3.0.0	17 Jul, 2024	0 C 0 H 0 M 0 L
3.0.0-next.0	17 Jul, 2024	0 C 0 H 0 M 0 L
2.3.3	15 Oct, 2024	0 C 0 H 0 M 0 L
2.3.2	4 Oct, 2024	0 C 0 H 0 M 0 L
2.3.1	10 Sep, 2024	0 C 0 H 0 M 0 L
2.3.0	17 Jul, 2024	0 C 0 H 0 M 0 L
2.2.7	27 Jun, 2024	0 C 0 H 0 M 0 L
2.2.7-canary.0	20 Jun, 2024	0 C 0 H 0 M 0 L
2.2.6	18 Jun, 2024	0 C 0 H 0 M 0 L
2.2.5	3 Jun, 2024	0 C 0 H 0 M 0 L
2.2.4	8 May, 2024	0 C 0 H 0 M 0 L
2.2.3	2 May, 2024	0 C 0 H 0 M 0 L
2.2.2	25 Apr, 2024	0 C 0 H 0 M 0 L
2.2.1	25 Apr, 2024	0 C 0 H 0 M 0 L
2.2.0	15 Apr, 2024	0 C 0 H 0 M 0 L
2.2.0-next.8	4 Apr, 2024	0 C 0 H 0 M 0 L
2.2.0-next.7	20 Mar, 2024	0 C 0 H 0 M 0 L
2.2.0-next.6	14 Mar, 2024	0 C 0 H 0 M 0 L
2.2.0-next.5	26 Feb, 2024	0 C 0 H 0 M 0 L

See all versions