exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 2

CVE-2018-14020

больше 7 лет назад

An issue was discovered in the Paymorrow module 1.0.0 before 1.0.2 and 2.0.0 before 2.0.1 for OXID eShop. An attacker can bypass delivery-address change detection if the payment module doesn't use eShop's checkout procedure properly. To do so, the attacker must change the delivery address to one that is not verified by the Paymorrow module.

CVSS3: 5.3

EPSS: Низкий

GHSA-489x-ccjw-q7c4

больше 3 лет назад

Paymorrow Improper Input Validation vulnerability

CVSS3: 5.3

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2018-14020 An issue was discovered in the Paymorrow module 1.0.0 before 1.0.2 and 2.0.0 before 2.0.1 for OXID eShop. An attacker can bypass delivery-address change detection if the payment module doesn't use eShop's checkout procedure properly. To do so, the attacker must change the delivery address to one that is not verified by the Paymorrow module.	CVSS3: 5.3	0% Низкий	больше 7 лет назад
	GHSA-489x-ccjw-q7c4 Paymorrow Improper Input Validation vulnerability	CVSS3: 5.3	0% Низкий	больше 3 лет назад

Уязвимостей на страницу