CVE-2020-13923

Published: 15/07/2020 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

IDOR vulnerability in the order processing feature from ecommerce component of Apache OFBiz prior to 17.12.04

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache ofbiz

Severity: Important Vendor: The Apache Software Foundation Versions Affected: All versions < 171204 Description: IDOR vulnerability in the order processing feature from ecommerce component Mitigation: Upgrade to 171204 or manually apply the commit at OFBIZ-11836 ---- Credit: Harshit Shukla <harshitshukz () gmail com> References ...

CWE-639 https://s.apache.org/chokl https://lists.apache.org/thread.html/r2e669797c1ea08562253239d2dc4192d951945e0c36cb0754f5394a6%40%3Cannounce.apache.org%3E https://lists.apache.org/thread.html/rac7e36c3daa60dd4b813f72942921b4fad71da821480ebcea96ecea1%40%3Cnotifications.ofbiz.apache.org%3E https://lists.apache.org/thread.html/r0a0a701610b3bcdf14634047313adab3f1628bb9aa55cf29cd262ef5%40%3Ccommits.ofbiz.apache.org%3E https://lists.apache.org/thread.html/r108a964764b8bd21ebd32ccd4f51c183ee80a251c105b849154a8e9d%40%3Ccommits.ofbiz.apache.org%3E https://nvd.nist.gov http://seclists.org/oss-sec/2020/q3/28

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-13923

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect