Spectra Assure
Community
Docs
failRisk: Vulnerabilities
Scanned: about 22 hours ago

spree_frontend

latest
Top 10k
Spree Commerce Storefront built with Rails and Turbo/Hotwire
License: Permissive (BSD-3-Clause)
Published: over 1 year ago
Visit Github
See on RubyGems

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
1 patch mandated vulnerabilities
Hardening
No application hardening issues

Threats

Tampering
No evidence of software tampering
Malware
No evidence of malware inclusion
List of known vulnerabilities affecting the software package and the components it embeds. Last refreshed on: 2025/11/02
All detected vulnerabilities are fixable
Run the update/upgrade command in your package manager to resolve the detected vulnerabilities
CVSS Score
CVE
Name
Tags
high
7.5
CVE-2018-3760
Exploits Exist
Fix Available
Exploited by Malware
medium
6.3
CVE-2020-23064
Fix Available
medium
6.1
CVE-2016-10735
Exploits Exist
Fix Available
medium
6.1
CVE-2018-14040
Exploits Exist
Fix Available
medium
6.1
CVE-2018-14041
Exploits Exist
Fix Available
medium
6.1
CVE-2018-14042
Exploits Exist
Fix Available
medium
6.1
CVE-2019-11358
Exploits Exist
Fix Available
Exploited by Malware
medium
6.1
CVE-2019-8331
Exploits Exist
Fix Available
medium
6.1
CVE-2020-11022
Exploits Exist
Fix Available
Exploited by Malware
medium
6.1
CVE-2020-11023
Exploits Exist
Fix Available
Exploited by Malware
Patching Mandated

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.