Vulnerabilities > CVE-2023-36644 - Unspecified vulnerability in Itb-Pim Tradepro 9.5

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

itb-pim

NVD

Published: 2024-04-04

Updated: 2025-04-24

Summary

Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order confirmations from the online shop via the printmail plugin.

Vulnerable Configurations

Part	Description	Count
Application	Itb-Pim ITB PIM Tradepro 9.5	1

References

https://github.com/caffeinated-labs/CVE-2023-36644
https://github.com/caffeinated-labs/CVE-2023-36644