CVE-2024-50944

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
2
PROJECTS

Description

Integer overflow vulnerability exists in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f in the shopping cart functionality. The issue lies in the quantity parameter in the CartController's AddToCart method.

simplcommerce/SimplCommerce
simplcommerce/SimplCommerce
A simple, cross platform, modulith ecommerce system built on .NET
GitHubGitHub
4.41K
AbdullahAlmutawa/CVE-2024-50944
AbdullahAlmutawa/CVE-2024-50944
Integer Overflow in Cart Logic in SimplCommerce allows remote attackers to manipulate product quantities and total prices via crafted inputs that exploit insufficient validation of the quantity parameter.
GitHubGitHub