WoodMartW
WoodMart
Nov 14

Quantity value with a fraction and without Fraction feature.

Business logic vulnerabilities are flaws in the design and implementation of an application that allow an attacker to elicit unintended behavior. This potentially enables attackers to manipulate legitimate functionality to achieve a malicious goal. These flaws are generally the result of failing to anticipate unusual application states that may occur and, consequently, failing to handle them safely. In this case, it was discovered that the application allows the purchase of fractional quantities of items, resulting in the ability to buy items at a significantly lower cost than intended.
PendingPending