RSS   Vulnerabilities for 'Quote'   RSS

2021-02-04
 
CVE-2020-16194

CWE-20
 

 
An Insecure Direct Object Reference (IDOR) vulnerability was found in Prestashop Opart devis < 4.0.2. Unauthenticated attackers can have access to any user's invoice and delivery address by exploiting an IDOR on the delivery_address and invoice_address fields.

 


Copyright 2024, cxsecurity.com

 

Back to Top