CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2023/12/15 1:15 a.m.•18 views

CVE-2023-6832

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0...

4.3CVSS6AI score

Prion•added 2023/12/15 1:15 a.m.•15 views

Code injection

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0...

4.3CVSS7.1AI score0.00512EPSS

CVE•added 2023/12/15 12:0 a.m.•43 views

CVE-2023-6832

CVE-2023-6832 affects microweber/microweber prior to 2.0. A business logic flaw enables bypass of coupon code validation, allowing attackers to obtain items at reduced prices when the coupon feature is disabled. Public sources (GHSA and Veracode advisories) describe the coupon-validation bypass a...

6CVSS4.7AI score0.00512EPSS

Vulnrichment•added 2023/12/15 12:0 a.m.•10 views

CVE-2023-6832 Business Logic Errors in microweber/microweber

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0...

6CVSS7.1AI score0.00512EPSS

Cvelist•added 2023/12/15 12:0 a.m.•14 views

CVE-2023-6832 Business Logic Errors in microweber/microweber

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0...

6CVSS4.9AI score0.00512EPSS

Github Security Blog•added 2023/12/07 12:30 a.m.•23 views

Microweber Business Logic Errors

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0.0. Unpublished and deleted products can be added to checkout...

6.5CVSS7.1AI score0.00487EPSS

NVD•added 2023/12/07 12:15 a.m.•8 views

CVE-2023-6566

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0...

6.5CVSS0.00487EPSS

OSV•added 2023/12/07 12:15 a.m.•12 views

CVE-2023-6566

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0...

6.5CVSS5.8AI score

Prion•added 2023/12/07 12:15 a.m.•14 views

Code injection

Business Logic Errors in GitHub repository microweber/microweber prior to 2.0...

4.6CVSS7AI score0.00487EPSS

CVE•added 2023/12/07 12:0 a.m.•37 views

CVE-2023-6566

CVE-2023-6566 describes business logic errors in microweber/microweber prior to 2.0. The root cause, as reflected in multiple sources, is a flaw in the CartManager.php get function that fails to verify whether items are unpublished or deleted before checkout. Affected product: microweber/microweb...

6.5CVSS6AI score0.00487EPSS

Tenable Nessus•added 2023/11/07 12:0 a.m.•29 views

Rocky Linux 8 : curl (RLSA-2021:3582)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:3582 advisory. - When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided in the metalink XML file.The...

6.5CVSS6.3AI score0.0627EPSS

Exploits4References7

Vulnrichment•added 2023/09/29 6:2 a.m.•10 views

CVE-2023-3914 Incorrect User Management in GitLab

A business logic error in GitLab EE affecting all versions prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1 allows access to internal projects. A service account is not deleted when a namespace is deleted, allowing access to internal projects...

5.4CVSS5AI score0.00367EPSS

Cvelist•added 2023/09/29 6:2 a.m.•18 views

CVE-2023-3914 Incorrect User Management in GitLab

5.4CVSS5.8AI score0.00367EPSS

Tenable Nessus•added 2023/09/19 12:0 a.m.•39 views

SUSE SLES12 Security Update : libxml2 (SUSE-SU-2023:3665-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3665-1 advisory. - Possible cross-site scripting vulnerability in libxml after commit 960f0e2. CVE-2016-3709 - In libxml2 before 2.10.4, parsing of...

6.5CVSS6.9AI score0.01086EPSS

Exploits3References13

Veracode•added 2023/09/05 9:3 a.m.•19 views

Business Logic Errors

vyper is vulnerable to Business Logic Errors. The vulnerability exists because the order of evaluation of the arguments of the builtin functions uint256addmod, uint256mulmod, ecadd and ecmul does not follow source order, which can be exploited by an attacker to create contracts that behave...

5.3CVSS6.8AI score0.00455EPSS

Veracode•added 2023/08/14 5:51 p.m.•18 views

Business Logic Errors

froxlor/froxlor is vulnerable to Business Logic Errors. The vulnerability exists in the update function pf Admins.php because the admin name is not properly validated for spaces which allows an attacker to save a user name with just spaces/...

3.8CVSS6.7AI score0.00477EPSS

CNNVD•added 2023/08/14 12:0 a.m.•3 views

Google Android Security Vulnerability

Google Android is a Linux-based open source operating system from the American company Google. Google Android suffers from a security vulnerability that stems from the existence of logic errors in the code at multiple locations, with a possible way to mask the microphone privacy indicator...

3.3CVSS6.9AI score0.00084EPSS

Exploits0References3

Github Security Blog•added 2023/08/11 3:30 a.m.•27 views

Froxlor vulnerable to business logic errors

Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22...

3.8CVSS7AI score0.00477EPSS