Looking for the vulnerability index of Invicti's legacy products?
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7854) - Vulnerability Database

Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7854)

Description

An insecure direct object reference (IDOR) vulnerability in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2 can lead to unauthorized disclosure of company credit history details.

References

Related Vulnerabilities