Mars: Order More Than Maximum Allowed Quantity

The business logic vulnerability allowed users to bypass the product quantity limits 1-20 items through parameter manipulation. While the user interface enforced these limits, the necessary server-side validation was missing...

Shopware 输入验证错误漏洞

Shopware is a suite of open source e-commerce software from German company Shopware. Shopware suffers from an input validation error vulnerability that originates from the ability to use AP to place the same line item into the shopping cart multiple times. This allows users to bypass sales quanti...