Information Disclosure Vulnerability in OroCommerce

Information Disclosure Vulnerability in OroCommerce

CVE-2023-32065 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

OroCommerce is an open-source Business to Business Commerce application built with flexibility in mind. Detailed Order totals information may be received by Order ID. This issue is patched in version 5.0.11 and 5.1.1.

Learn more about our Web Application Penetration Testing UK.