Description
In Saleor Storefront before version 2.10.3, request data used to authenticate customers was inadvertently cached in the browser's local storage mechanism, including credentials. A malicious user with direct access to the browser could extract the email and password. In versions prior to 2.10.0 persisted the cache even after the user logged out. This is fixed in version 2.10.3. A workaround is to manually clear application data (browser's local storage) after logging into Saleor Storefront.
References (3)
Core 3
Core References
Third Party Advisory x_refsource_confirm
https://github.com/mirumee/saleor-storefront/security/advisories/GHSA-4279-h39w-2jqm
Release Notes, Third Party Advisory x_refsource_misc
https://github.com/mirumee/saleor-storefront/blob/master/CHANGELOG.md#2103
Patch, Third Party Advisory x_refsource_misc
https://github.com/mirumee/saleor-storefront/commit/7c331e1be805022c9a7be719bd69d050b2577458
Scores
CVSS v3
6.9
EPSS
0.0058
EPSS Percentile
43.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:N
Details
CWE
CWE-312
Status
published
Products (1)
mirumee/saleor
< 2.10.3
Published
Jun 30, 2020
Tracked Since
Feb 18, 2026