Unrated severityNVD Advisory· Published May 1, 2022· Updated Sep 17, 2024
Shopizer - IDOR delete superadmin
CVE-2022-23061
Description
In Shopizer versions 2.0 to 2.17.0 a regular admin can permanently delete a superadmin (although this cannot happen according to the documentation) via Insecure Direct Object Reference (IDOR) vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=2.0 <=2.17.0+ 1 more
- (no CPE)range: >=2.0 <=2.17.0
- (no CPE)range: 2.0
Patches
Vulnerability mechanics
References
2- github.com/shopizer-ecommerce/shopizer/commit/6b9f1ecd303b3b724d96bd08095c1a751dcc287emitrex_refsource_MISC
- www.whitesourcesoftware.com/vulnerability-database/CVE-2022-23061mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.