CVE-2020-13923

Medium

IDOR vulnerability in the order processing feature from ecommerce component of Apache OFBiz before 17.12.04

apache·CWE-639·Published 2020-07-15

CVSS

5.3

EPSS

0.05

KEV

Exploits

cve.orgen

107 chars

IDOR vulnerability in the order processing feature from ecommerce component of Apache OFBiz before 17.12.04

NVDen

107 chars

IDOR vulnerability in the order processing feature from ecommerce component of Apache OFBiz before 17.12.04

NVDes

132 chars

Vulnerabilidad de IDOR en la funcionalidad order processing del componente ecommerce de Apache OFBiz versiones anteriores a 17.12.04

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N
3.1	Primary	NVD	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N