CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2022/03/21 7:15 p.m.•4 views

CVE-2022-0514

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

6.5CVSS6.5AI score0.00942EPSS

Prion•added 2022/03/21 7:15 p.m.•6 views

Design/Logic Flaw

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

4CVSS6.5AI score0.00942EPSS

CVE•added 2022/03/21 6:50 p.m.•79 views

CVE-2022-0514

CVE-2022-0514 affects crater-invoice/crater prior to 6.0.5. The issue is a business logic flaw in Crater’s settings handling that lets an attacker alter the currency by tampering a parameter in the API request (e.g., /api/v1/company/settings with currency set to 1 and changing it to 2). The impac...

6.5CVSS6.5AI score0.00942EPSS

Cvelist•added 2022/03/21 6:50 p.m.•14 views

CVE-2022-0514 Business Logic Errors in crater-invoice/crater

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

6.5CVSS6.7AI score0.00942EPSS

OSV•added 2022/03/21 6:50 p.m.•21 views

CVE-2022-0514 Business Logic Errors in crater-invoice/crater

Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5...

6.5CVSS6.7AI score0.00942EPSS

Exploits1References4

Veracode•added 2022/02/28 6:55 a.m.•20 views

Business Logic Errors

microweber/microweber is vulnerable to business logic errors. The vulnerability exists in updatecart function of CartManager.php due to missing validations which allows an attacker to exploit the flaw...

5.5CVSS4.6AI score0.00631EPSS

Exploits1References4Affected Software1

NVD•added 2022/02/25 9:15 a.m.•5 views

CVE-2022-0746

Business Logic Errors in GitHub repository dolibarr/dolibarr prior to 16.0...

4.3CVSS0.00868EPSS

UbuntuCve•added 2022/02/25 9:15 a.m.•35 views

CVE-2022-0746

Business Logic Errors in GitHub repository dolibarr/dolibarr prior to 16.0...

4.3CVSS5.8AI score0.00868EPSS

ATTACKERKB•added 2022/02/25 9:15 a.m.•3 views

CVE-2022-0746

Business Logic Errors in GitHub repository dolibarr/dolibarr prior to 16.0...

4.3CVSS5.4AI score0.00868EPSS

OSV•added 2022/02/25 9:15 a.m.•0 views

UBUNTU-CVE-2022-0746

Business Logic Errors in GitHub repository dolibarr/dolibarr prior to 16.0...

4.3CVSS5.7AI score0.00868EPSS

Exploits1References4

Cvelist•added 2022/02/25 9:5 a.m.•28 views

CVE-2022-0746 Business Logic Errors in dolibarr/dolibarr

Business Logic Errors in GitHub repository dolibarr/dolibarr prior to 16.0...

4.3CVSS4.9AI score0.00868EPSS

CVE•added 2022/02/25 9:5 a.m.•101 views

CVE-2022-0746

CVE-2022-0746 affects dolibarr/dolibarr prior to 16.0 and is described as a business-logic error. Connected records (GHSA-8VQ6-5F66-HP3R) indicate that, prior to 16.0, low-privilege users could update their login name, which should be admin-only. The provided documents do not specify a concrete e...

4.3CVSS4.5AI score0.00868EPSS

OSV•added 2022/02/25 9:5 a.m.•16 views

CVE-2022-0746 Business Logic Errors in dolibarr/dolibarr

Business Logic Errors in GitHub repository dolibarr/dolibarr prior to 16.0...

4.3CVSS4.5AI score0.00868EPSS

Exploits1References4

Huntr•added 2022/02/24 3:25 a.m.•23 views

Business Logic Errors

Description Product status of product is unpublished has been deleted by admin in Trash folder but user can still add to cart and make purchases Proof of Concept Step 1: Admin go to Shop Products: Unpublish product and Delete product Step 2: User add product to cart by request POST...

4CVSS4.6AI score0.00631EPSS

Exploits1

Veracode•added 2022/02/21 6:19 a.m.•24 views

Business Logic Errors

microweber/microweber is vulnerable to business logic errors. Lack of secure validation of sessionid for usermanager in the function removeitem causes business logic errors...

4.9CVSS3.4AI score0.00911EPSS

ATTACKERKB•added 2022/02/20 3:15 p.m.•2 views

CVE-2022-0688

Business Logic Errors in Packagist microweber/microweber prior to 1.2.11...

9.4CVSS6.8AI score0.00911EPSS

NVD•added 2022/02/20 3:15 p.m.•21 views

CVE-2022-0688

Business Logic Errors in Packagist microweber/microweber prior to 1.2.11...

9.4CVSS0.00911EPSS