Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/30 9:23 p.m.5 views

CVE-2026-1599

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...

5.3CVSS5.5AI score0.00295EPSS
Exploits1References1
NVD
NVD
added 2026/01/29 6:16 p.m.5 views

CVE-2026-1599

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...

5.3CVSS0.00295EPSS
Exploits1References5
EUVD
EUVD
added 2026/01/29 5:32 p.m.6 views

EUVD-2026-4961

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...

5.3CVSS5.5AI score0.00295EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/01/29 5:32 p.m.37 views

CVE-2026-1599 Bdtask Bhojon All-In-One Restaurant Management System Checkout placeorder logic error

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...

5.3CVSS0.00295EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/29 5:32 p.m.5 views

CVE-2026-1599 Bdtask Bhojon All-In-One Restaurant Management System Checkout placeorder logic error

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...

5.3CVSS5.5AI score0.00295EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.5 views

Bdtask Bhojon All-In-One Restaurant Management System has security vulnerabilities.

Bdtask Bhojon All-In-One Restaurant Management System is a restaurant management system developed by the Bangladeshi company Bdtask. Versions of the Bdtask Bhojon All-In-One Restaurant Management System prior to version 20260116 contained security vulnerabilities. These vulnerabilities were cause...

5.3CVSS5.8AI score0.00295EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/01/29 12:0 a.m.8 views

PT-2026-5315

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/service charge/grandtotal can le...

5.3CVSS5.5AI score0.00295EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2022/05/24 7:12 p.m.7 views

Magento affected by a business logic error in the placeOrder graphql mutation

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by a business logic error in the placeOrder graphql mutation. An authenticated attacker can leverage this vulnerability to altar the price of an item...

6.5CVSS6.7AI score0.01801EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2022/05/24 7:12 p.m.4 views

GHSA-3F97-7PGV-GMGR Magento affected by a business logic error in the placeOrder graphql mutation

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by a business logic error in the placeOrder graphql mutation. An authenticated attacker can leverage this vulnerability to altar the price of an item...

6.5CVSS6.7AI score0.01801EPSS
Exploits0References3
NVD
NVD
added 2021/09/01 3:15 p.m.23 views

CVE-2021-36012

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by a business logic error in the placeOrder graphql mutation. An authenticated attacker can leverage this vulnerability to altar the price of an item...

6.5CVSS0.01801EPSS
Exploits0References1
OSV
OSV
added 2021/09/01 3:15 p.m.27 views

CVE-2021-36012

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by a business logic error in the placeOrder graphql mutation. An authenticated attacker can leverage this vulnerability to altar the price of an item...

6.5CVSS6.3AI score
Exploits0References1
Prion
Prion
added 2021/09/01 3:15 p.m.22 views

Code injection

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by a business logic error in the placeOrder graphql mutation. An authenticated attacker can leverage this vulnerability to altar the price of an item...

4CVSS6.8AI score0.01801EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2021/09/01 2:28 p.m.69 views

CVE-2021-36012

CVE-2021-36012 describes a business-logic flaw in Magento Commerce’s placeOrder GraphQL mutation where an authenticated attacker can alter the price of an item, affecting Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier), and 2.3.7 (and earlier). The vulnerability stems from a...

6.5CVSS6.2AI score0.01801EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/09/01 2:28 p.m.33 views

CVE-2021-36012 Magento Commerce Gift Card Business Logic Error

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by a business logic error in the placeOrder graphql mutation. An authenticated attacker can leverage this vulnerability to altar the price of an item...

6.5CVSS6.3AI score0.01801EPSS
Exploits0References1
Rows per page
Query Builder