43 matches found
EUVD-2002-1336
Malware in sbrugna...
EUVD-2002-2281
Malware in sbrugna...
EUVD-2004-1206
Malware in sbrugna...
EUVD-2018-8011
Malware in sbrugna...
EUVD-2020-14273
Malware in sbrugna...
EUVD-2000-0913
Malware in sbrugna...
EUVD-2018-20371
Malware in sbrugna...
EUVD-2004-0681
Malware in sbrugna...
EUVD-2002-2280
Malware in sbrugna...
CVE-2020-21503
waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form submission, by observing data in a packet capture. By setting the index.php?m=gift=addsave credit parameter to -1, the product is sold for free...
CVE-2023-3125
The B2BKing plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'b2bkingsavepriceimport' function in versions up to, and including, 4.6.00. This makes it possible for Authenticated attackers with subscriber or customer-level permissions...
PT-2023-12487 · WordPress · Woocommerce Multi Currency
Name of the Vulnerable Software and Affected Versions: WooCommerce Multi Currency plugin for WordPress versions up to and including 2.1.17 Description: The issue allows authenticated attackers to modify product prices to arbitrary values due to missing authorization. Recommendations: For versions...
Design/Logic Flaw
waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form submission, by observing data in a packet capture. By setting the index.php?m=gift&a=addsave credit parameter to -1, the product is sold for free...
CVE-2020-21503
Waimai Super Cms 20150505 contains a logic flaw in the purchase flow: by manipulating the price parameter via the URL index.php?m=gift&a=addsave with credit set to -1, an attacker can obtain a free product before form submission. Multiple sources (NVD CVE-2020-21503, Red Hat, CNNNVD, CNNVD, CVE l...
CVE-2020-21503
waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form submission, by observing data in a packet capture. By setting the index.php?m=gift&a=addsave credit parameter to -1, the product is sold for free...
Waimai Super Cms 处理逻辑错误漏洞
Waimai Super Cms is a takeout ordering system. A processing logic error vulnerability exists in Waimai Super Cms that stems from an improper implementation of the processing logic for the product index.php?m=gift&a=addsave link. The vulnerability can be exploited to modify the data captured in a...
CVE-2018-16157
waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form submission, by observing data in a packet capture. By setting the index.php?m=cart&a=save itemtotals parameter to zero, the entire cart is sold for free...
Design/Logic Flaw
waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form submission, by observing data in a packet capture. By setting the index.php?m=cart&a=save itemtotals parameter to zero, the entire cart is sold for free...
CVE-2018-16157
The CVE-2018-16157 entry describes a logic flaw in waimai Super Cms 20150505 where attackers can modify the price before form submission by observing data in a packet capture. By setting the index.php?m=cart&a=save item_totals parameter to zero, the entire cart can be sold for free. The available...
CVE-2018-16157
waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form submission, by observing data in a packet capture. By setting the index.php?m=cart&a=save itemtotals parameter to zero, the entire cart is sold for free...