Описание
An issue was discovered in OPC cardsystems Webapp Aufwertung 2.1.0. The reference assigned to transactions can be reused. When completing a payment, the first or all transactions with the same reference are completed, depending on timing. This can be used to transfer more money onto employee cards than is paid.
EPSS
Процентиль: 29%
0.00103
Низкий
7.5 High
CVSS3
Дефекты
CWE-488
Связанные уязвимости
CVSS3: 7.5
github
11 месяцев назад
An issue was discovered in OPC cardsystems Webapp Aufwertung 2.1.0. The reference assigned to transactions can be reused. When completing a payment, the first or all transactions with the same reference are completed, depending on timing. This can be used to transfer more money onto employee cards than is paid.
EPSS
Процентиль: 29%
0.00103
Низкий
7.5 High
CVSS3
Дефекты
CWE-488