Nov 14
Quantity value with a fraction and without Fraction feature.
Business logic vulnerabilities are flaws in the design and implementation of an
application that allow an attacker to elicit unintended behavior. This potentially
enables attackers to manipulate legitimate functionality to achieve a malicious
goal. These flaws are generally the result of failing to anticipate unusual
application states that may occur and, consequently, failing to handle them
safely. In this case, it was discovered that the application allows the purchase of
fractional quantities of items, resulting in the ability to buy items at a significantly
lower cost than intended.
Pending