CVE-2024-2267

HIGH Year: 2024
CVSS v3 Score
7.5
High
CVSS v2 Score
4.0
Medium
Weakness Type
CWE-840
View all →

Vulnerability Description

A vulnerability was found in keerti1924 Online-Book-Store-Website 1.0 and classified as problematic. This issue affects some unknown processing of the file /shop.php. The manipulation of the argument product_price leads to business logic errors. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-256037 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Related Vulnerabilities

CVE-2021-22926

HIGH
CVSS:7.5(High)

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CURLOPT_SSLCERT` option (`--cert` with the command line tool).When libcurl is buil...

CWE-8402021

CVE-2022-27782

HIGH
CVSS:7.5(High)

libcurl would reuse a previously created connection even when a TLS or SSHrelated option had been changed that should have prohibited reuse.libcurl keeps previously used connections in a connection po...

CWE-8402022

CVE-2024-45424

HIGH
CVSS:7.5(High)

Business logic error in some Zoom Workplace Apps may allow an unauthenticated user to conduct a disclosure of information via network access.

CWE-8402024

CVE-2024-51523

HIGH
CVSS:7.5(High)

Information management vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CWE-8402024

CVE-2024-54098

HIGH
CVSS:7.5(High)

Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may affect service integrity.

CWE-8402024

CVE-2024-56438

HIGH
CVSS:7.5(High)

Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability.

CWE-8402024