Download
| Alert*
CVE-2021-36012
Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by a business logic error in the placeOrder graphql mutation. An authenticated attacker can leverage this vulnerability to altar the price of an item. CVE-2021-4111 yetiforcecrm is vulnerable to Business Logic Errors CVE-2021-4117 yetiforcecrm is vulnerable to Business Logic Errors CVE-2022-0596 Improper Validation of Specified Quantity in Input in Packagist microweber/microweber prior to 1.2.11. CVE-2022-0414 Improper Validation of Specified Quantity in Input in Packagist dolibarr/dolibarr prior to 16.0. CVE-2022-0524 Business Logic Errors in GitHub repository publify/publify prior to 9.2.7. CVE-2022-0227 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. Reason: This CVE has been rejected as it was incorrectly assigned. All references and descriptions in this candidate have been removed to prevent accidental usage |