1 results (0.001 seconds)

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0

An issue in 202 ecommerce Advanced Loyalty Program: Loyalty Points before v2.3.4 for PrestaShop allows unauthenticated attackers to arbitrarily change an order status. Un problema en 202 ecommerce Advanced Loyalty Program: Loyalty Points anteriores a v2.3.4 para PrestaShop permite a atacantes no autenticados cambiar arbitrariamente el estado de un pedido. • https://github.com/202ecommerce/security-advisories/security/advisories/GHSA-jp2c-mj65-qpmw • CWE-862: Missing Authorization •