logo
Vulnerability feed
Contributors
About
Blog
CONTRIBUTE

Vulnerability

warn

CVE-2022-33077

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2022-33077

Description:
An access control issue in nopcommerce v4.50.2 allows attackers to arbitrarily modify any customer's address via the addressedit endpoint.
Last updated date:
10/20/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
10/20/2022
Reference url to background

https://medium.com/@rohan_pagey/cve-2022-33077-idor-to-change-address-of-any-customer-via-parameter-pollution-in-nopcommerce-4-5-2fa4bc763cc6

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy