Total
47 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-3914 | 1 Gitlab | 1 Gitlab | 2023-10-03 | N/A | 5.3 MEDIUM |
| A business logic error in GitLab EE affecting all versions prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1 allows access to internal projects. A service account is not deleted when a namespace is deleted, allowing access to internal projects. | |||||
| CVE-2023-3484 | 1 Gitlab | 1 Gitlab | 2023-07-31 | N/A | 6.5 MEDIUM |
| An issue has been discovered in GitLab EE affecting all versions starting from 12.8 before 15.11.11, all versions starting from 16.0 before 16.0.7, all versions starting from 16.1 before 16.1.2. An attacker could change the name or path of a public top-level group in certain situations. | |||||
| CVE-2023-29294 | 1 Adobe | 2 Commerce, Magento | 2023-06-22 | N/A | 4.3 MEDIUM |
| Adobe Commerce versions 2.4.6 (and earlier), 2.4.5-p2 (and earlier) and 2.4.4-p3 (and earlier) are affected by a Business Logic Errors vulnerability that could result in a security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass a minor functionality. Exploitation of this issue does not require user interaction. | |||||
| CVE-2023-3228 | 1 Fossbilling | 1 Fossbilling | 2023-06-17 | N/A | 5.7 MEDIUM |
| Business Logic Errors in GitHub repository fossbilling/fossbilling prior to 0.5.0. | |||||
| CVE-2023-3229 | 1 Fossbilling | 1 Fossbilling | 2023-06-17 | N/A | 6.5 MEDIUM |
| Business Logic Errors in GitHub repository fossbilling/fossbilling prior to 0.5.0. | |||||
| CVE-2023-1887 | 1 Phpmyfaq | 1 Phpmyfaq | 2023-04-12 | N/A | 4.3 MEDIUM |
| Business Logic Errors in GitHub repository thorsten/phpmyfaq prior to 3.1.12. | |||||
| CVE-2023-1541 | 1 Answer | 1 Answer | 2023-03-27 | N/A | 3.8 LOW |
| Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6. | |||||
| CVE-2023-1542 | 1 Answer | 1 Answer | 2023-03-24 | N/A | 5.4 MEDIUM |
| Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6. | |||||
| CVE-2022-4719 | 1 Ikus-soft | 1 Rdiffweb | 2023-01-05 | N/A | 9.8 CRITICAL |
| Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5. | |||||
| CVE-2022-0746 | 1 Dolibarr | 1 Dolibarr Erp\/crm | 2022-11-17 | 4.0 MEDIUM | 4.3 MEDIUM |
| Business Logic Errors in GitHub repository dolibarr/dolibarr prior to 16.0. | |||||
| CVE-2022-3363 | 1 Ikus-soft | 1 Rdiffweb | 2022-11-01 | N/A | 9.8 CRITICAL |
| Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7. | |||||
| CVE-2021-4117 | 1 Yetiforce | 1 Yetiforce Customer Relationship Management | 2022-08-09 | 4.0 MEDIUM | 4.3 MEDIUM |
| yetiforcecrm is vulnerable to Business Logic Errors | |||||
| CVE-2021-4111 | 1 Yetiforce | 1 Yetiforce Customer Relationship Management | 2022-08-09 | 4.0 MEDIUM | 4.3 MEDIUM |
| yetiforcecrm is vulnerable to Business Logic Errors | |||||
| CVE-2022-1848 | 1 Erudika | 1 Para | 2022-06-03 | 4.3 MEDIUM | 5.3 MEDIUM |
| Business Logic Errors in GitHub repository erudika/para prior to 1.45.11. | |||||
| CVE-2021-36012 | 1 Adobe | 2 Adobe Commerce, Magento Open Source | 2022-04-25 | 4.0 MEDIUM | 6.5 MEDIUM |
| Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by a business logic error in the placeOrder graphql mutation. An authenticated attacker can leverage this vulnerability to altar the price of an item. | |||||
| CVE-2022-0935 | 1 Livehelperchat | 1 Live Helper Chat | 2022-04-14 | 6.8 MEDIUM | 8.8 HIGH |
| Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97. | |||||
| CVE-2022-1155 | 1 Snipeitapp | 1 Snipe-it | 2022-04-05 | 6.5 MEDIUM | 7.4 HIGH |
| Old sessions are not blocked by the login enable function. in GitHub repository snipe/snipe-it prior to 5.3.10. | |||||
| CVE-2022-0514 | 1 Craterapp | 1 Crater | 2022-03-28 | 4.0 MEDIUM | 6.5 MEDIUM |
| Business Logic Errors in GitHub repository crater-invoice/crater prior to 6.0.5. | |||||
| CVE-2022-0688 | 1 Microweber | 1 Microweber | 2022-02-28 | 4.0 MEDIUM | 4.9 MEDIUM |
| Business Logic Errors in Packagist microweber/microweber prior to 1.2.11. | |||||
| CVE-2022-0689 | 1 Microweber | 1 Microweber | 2022-02-26 | 5.0 MEDIUM | 5.3 MEDIUM |
| Use multiple time the one-time coupon in Packagist microweber/microweber prior to 1.2.11. | |||||