5.3
CVSSv3

CVE-2020-13923

CVSSv4: NA | CVSSv3: 5.3 | CVSSv2: 5 | VMScore: 630 | EPSS: 0.00519 | KEV: Not Included
Published: 15/07/2020 Updated: 21/11/2024

Vulnerability Summary

IDOR vulnerability in the order processing feature from ecommerce component of Apache OFBiz prior to 17.12.04

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache ofbiz

Mailing Lists

Severity: Important Vendor: The Apache Software Foundation Versions Affected: All versions < 171204 Description: IDOR vulnerability in the order processing feature from ecommerce component Mitigation: Upgrade to 171204 or manually apply the commit at OFBIZ-11836 ---- Credit: Harshit Shukla <harshitshukz () gmail com> References ...