cl0udz

2 exploits Active since Oct 2019
CVE-2019-18608 WRITEUP HIGH WRITEUP
Cezerin 0.33.0 - Unauthenticated Order Information Modification via PUT /ajax/cart
Cezerin v0.33.0 allows unauthorized order-information modification because certain internal attributes can be overwritten via a conflicting name when processing order requests. Hence, a malicious customer can manipulate an order (e.g., its payment status or shipping fee) by adding additional attributes to user-input during the PUT /ajax/cart operation for a checkout, because of getValidDocumentForUpdate in api/server/services/orders/orders.js.
CVSS 7.5
CVE-2019-18954 WRITEUP MEDIUM WRITEUP
Pomelo < 2.2.7 - Critical State Data Manipulation via User Input
Pomelo v2.2.5 allows external control of critical state data. A malicious user input can corrupt arbitrary methods and attributes in template/game-server/app/servers/connector/handler/entryHandler.js because certain internal attributes can be overwritten via a conflicting name. Hence, a malicious attacker can manipulate internal attributes by adding additional attributes to user input.
CVSS 5.3