Security Advisory

CVE-2020-11007

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-16 18:20:12

Last updated 2024-08-04 11:21:14

Assigner GitHub_M

State PUBLISHED

Description

In Shopizer before version 2.11.0, using API or Controller based versions negative quantity is not adequately validated hence creating incorrect shopping cart and order total. This vulnerability makes it possible to create a negative total in the shopping cart. This has been patched in version 2.11.0.

← Browse all CVEs View on cve.org ↗