0.001 Low
EPSS
Percentile
48.4%
magento/community-edition is vulnerablbe to authorization bypass. The vulnerability exists through an Insecure Direct Object Reference (IDOR) that could allow unauthorized access to order details.
magento.com/security/patches/magento-2.3.2-2.2.9-and-2.1.18-security-update-23