Vulnerabilities > ITB PIM > Tradepro
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-04 | CVE-2023-36643 | Unspecified vulnerability in Itb-Pim Tradepro 9.5 Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all orders from the online shop via oordershow component in customer function. | 5.3 |
| 2024-04-04 | CVE-2023-36644 | Unspecified vulnerability in Itb-Pim Tradepro 9.5 Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order confirmations from the online shop via the printmail plugin. | 5.3 |
| 2024-04-04 | CVE-2023-36645 | Unspecified vulnerability in Itb-Pim Tradepro 9.5 SQL injection vulnerability in ITB-GmbH TradePro v9.5, allows remote attackers to run SQL queries via oordershow component in customer function. | 9.8 |