Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IDOR vulnerability in "Rental Module" developed by third-party for Ideasoft's E-commerce Platform.
Vulnerability Description
Authorization Bypass Through User-Controlled Key vulnerability in "Rental Module" developed by third-party for Ideasoft's E-commerce Platform allows Authentication Abuse, Authentication Bypass.This issue affects Rental Module: before 23.05.15.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
通过用户控制密钥绕过授权机制
Vulnerability Title
Ideasoft E-commerce Platform 安全漏洞
Vulnerability Description
Ideasoft E-commerce Platform是Ideasoft开源的一款电商平台。 Ideasoft E-commerce Platform 23.05之前版本存在安全漏洞,该漏洞源于Rental Module中允许攻击者通过控制的用户密钥绕过授权。
CVSS Information
N/A
Vulnerability Type
N/A