CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order confirmations from the online shop via the printmail plugin...

7.5CVSS7AI score0.00677EPSS

Exploits1

NVD•added 2024/04/04 9:15 a.m.•11 views

CVE-2023-36645

SQL injection vulnerability in ITB-GmbH TradePro v9.5, allows remote attackers to run SQL queries via oordershow component in customer function...

9.8CVSS9.5AI score0.00241EPSS

Exploits1References1

NVD•added 2024/04/04 9:15 a.m.•8 views

CVE-2023-36643

Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all orders from the online shop via oordershow component in customer function...

7.5CVSS7.5AI score0.00861EPSS

Exploits1References1

Cvelist•added 2024/04/04 12:0 a.m.•13 views

CVE-2023-36643

Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all orders from the online shop via oordershow component in customer function...

7.5CVSS7.7AI score0.00861EPSS

Exploits1References1

CVE•added 2024/04/04 12:0 a.m.•51 views

CVE-2023-36645

The CVE-2023-36645 entry concerns ITB-GmbH TradePro v9.5 with a SQL injection via the oordershow component in the customer function. Connected PT-2024-12574 details show the root cause as an access-control weakness allowing remote exploitation to execute SQL queries. Affects ITB-GmbH TradePro 9.5...

9.8CVSS9.4AI score0.00241EPSS

Exploits1References1Affected Software1

CVE•added 2024/04/04 12:0 a.m.•48 views

CVE-2023-36644

CVE-2023-36644 affects ITB-GmbH TradePro v9.5. The issue stems from Incorrect Access Control in the printmail plugin, enabling remote attackers to retrieve all order confirmations from the online shop. Connected sources corroborate the affected product (TradePro v9.5) and the vulnerability class ...

7.5CVSS7.5AI score0.00677EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2024/04/04 12:0 a.m.•11 views

CVE-2023-36645

SQL injection vulnerability in ITB-GmbH TradePro v9.5, allows remote attackers to run SQL queries via oordershow component in customer function...

9.1CVSS9.5AI score0.00241EPSS

Exploits1References1

Cvelist•added 2024/04/04 12:0 a.m.•14 views

CVE-2023-36644

Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order confirmations from the online shop via the printmail plugin...

7.5CVSS7.7AI score0.00677EPSS

Exploits1References1

Vulnrichment•added 2024/04/04 12:0 a.m.•9 views

CVE-2023-36644

Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order confirmations from the online shop via the printmail plugin...

7.5CVSS7AI score0.00677EPSS

Exploits1References1

CNNVD•added 2024/04/04 12:0 a.m.•1 views

ITB-GmbH TradePro 安全漏洞

ITB-GmbH TradePro is a complete B2B e-shop from ITB-GmbH. A security vulnerability exists in ITB-GmbH TradePro version v9.5, which stems from incorrect access control. A remote attacker uses the vulnerability to receive all orders from the online store via the oordershow component in the customer...

7.5CVSS6.8AI score0.00861EPSS

Exploits1References2

Vulnrichment•added 2024/04/04 12:0 a.m.•11 views

CVE-2023-36643

Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all orders from the online shop via oordershow component in customer function...

7.5CVSS7.2AI score0.00861EPSS

Exploits1References1

Cvelist•added 2024/04/04 12:0 a.m.•15 views

CVE-2023-36645

SQL injection vulnerability in ITB-GmbH TradePro v9.5, allows remote attackers to run SQL queries via oordershow component in customer function...

9.1CVSS9.7AI score0.00241EPSS

Exploits1References1

Openbugbounty•added 2018/02/18 10:49 a.m.•13 views

itb-kongress.de XSS vulnerability

Open Bug Bounty ID: OBB-562963 Description| Value ---|--- Affected Website:| itb-kongress.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

Openbugbounty•added 2017/06/15 3:14 p.m.•12 views

blendedlearning.itb.ac.id XSS vulnerability

Open Bug Bounty ID: OBB-248455 Description| Value ---|--- Affected Website:| blendedlearning.itb.ac.id Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

Openbugbounty•added 2016/07/09 2:0 a.m.•13 views

isisonline.lib.itb.ac.id XSS vulnerability

Vulnerable URL: http://isisonline.lib.itb.ac.id/search.php?db=ITB/RISET/IND=454="fmt=bookmark Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...

6.2AI score

Exploits0

Openbugbounty•added 2016/04/08 2:47 p.m.•16 views

itb-berlin.com XSS vulnerability

Open Bug Bounty ID: OBB-145302 Description| Value ---|--- Affected Website:| itb-berlin.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by