CVE-2023-36643

Published
View on NVD ↗
CVSS v3
7.5
HIGH
CVSS v2
N/A
Affected
1
PROJECT

Description

Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all orders from the online shop via oordershow component in customer function.

caffeinated-labs/CVE-2023-36643
caffeinated-labs/CVE-2023-36643
GitHubGitHub