CWE-840 (业务逻辑错误) — Vulnerability Class 75

75 vulnerabilities classified as CWE-840 (业务逻辑错误). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-39671	Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS	9.3	Critical	2024-07-25
CVE-2023-7271	Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS	5.5	Medium	2024-07-25
CVE-2024-4046	Huawei HarmonyOS 安全漏洞 — HarmonyOS	6.4	Medium	2024-05-11
CVE-2024-32999	Huawei HarmonyOS 安全漏洞 — HarmonyOS	6.8	Medium	2024-05-11
CVE-2024-1456	S3 Bucket Takeover in h2oai/h2o-3 — h2oai/h2o-3	9.8	-	2024-04-16
CVE-2024-2267	keerti1924 Online-Book-Store-Website shop.php logic error — Online-Book-Store-Website	4.3	Medium	2024-03-07
CVE-2024-2151	SourceCodester Online Mobile Management Store Product Price logic error — Online Mobile Management Store	4.3	Medium	2024-03-03
CVE-2023-6832	Business Logic Errors in microweber/microweber — microweber/microweber	5.3	-	2023-12-15
CVE-2023-6566	Business Logic Errors in microweber/microweber — microweber/microweber	5.3	-	2023-12-07
CVE-2023-6514	Huawei Smart Screen 授权问题漏洞 — AJMD-370S	8.8	High	2023-12-06
CVE-2023-6017	H2O S3 Bucket Takeover — h2oai/h2o-3	9.3	-	2023-11-16
CVE-2023-4304	Business Logic Errors in froxlor/froxlor — froxlor/froxlor	3.8	Low	2023-08-11
CVE-2023-29294	Bypass Purchase Order Approval using Company User in Adobe Commerce B2B — Magento Commerce	4.3	Medium	2023-06-15
CVE-2023-3228	Business Logic Errors in fossbilling/fossbilling — fossbilling/fossbilling	4.3	-	2023-06-14
CVE-2023-3229	Business Logic Errors in fossbilling/fossbilling — fossbilling/fossbilling	4.3	-	2023-06-14
CVE-2023-1887	Business Logic Errors in thorsten/phpmyfaq — thorsten/phpmyfaq	4.3	-	2023-04-05
CVE-2023-1542	Business Logic Errors in answerdev/answer — answerdev/answer	7.1	-	2023-03-21
CVE-2023-1541	Business Logic Errors in answerdev/answer — answerdev/answer	7.1	-	2023-03-21
CVE-2023-0565	Business Logic Errors in froxlor/froxlor — froxlor/froxlor	5.5	Medium	2023-01-29
CVE-2022-4719	Business Logic Errors in ikus060/rdiffweb — ikus060/rdiffweb	5.3	-	2022-12-23
CVE-2022-3363	Business Logic Errors in ikus060/rdiffweb — ikus060/rdiffweb	5.3	-	2022-10-26
CVE-2022-32208	curl 缓冲区错误漏洞 — https://github.com/curl/curl	5.9	-	2022-07-07
CVE-2022-32207	curl 安全漏洞 — https://github.com/curl/curl	8.1	-	2022-07-07
CVE-2022-27782	curl 信任管理问题漏洞 — https://github.com/curl/curl	7.5	-	2022-06-01
CVE-2022-1848	Business Logic Errors in erudika/para — erudika/para	5.3	-	2022-05-24
CVE-2022-0935	Host Header injection in password Reset in livehelperchat/livehelperchat — livehelperchat/livehelperchat	8.8	-	2022-04-07
CVE-2022-1155	Old sessions are not blocked by the login enable function. in snipe/snipe-it — snipe/snipe-it	7.4	-	2022-03-30
CVE-2022-0514	Business Logic Errors in crater-invoice/crater — crater-invoice/crater	6.5	-	2022-03-21
CVE-2022-0746	Business Logic Errors in dolibarr/dolibarr — dolibarr/dolibarr	4.3	-	2022-02-25
CVE-2022-0688	Business Logic Errors in microweber/microweber — microweber/microweber	2.7	-	2022-02-20

Vulnerabilities classified as CWE-840 (业务逻辑错误) represent 75 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-840 (业务逻辑错误) — Vulnerability Class 75