CVE-2023-36331 Blast Radius

HIGH • CVSS 8.2Incorrect access control in the /member/orderList API of xmall v1.1 allows attackers to arbitrarily access other users' order details via manipulation

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2023-36331.

Start Free Scan →← Back to CVE-2023-36331