CVE-2013-3596
AdvancePro Advanceware is affected by CVE-2013-3596. The vulnerability is a privilege bypass that allows remote authenticated users to view order information for other customers by manipulating the id parameter, causing information leakage (CWE-200). The issue arises from insufficient access cont...