CVE-2023-27919 Information

Description

Authentication bypass vulnerability in NEXT ENGINE Integration Plugin (for EC-CUBE 2.0 series) all versions allows a remote unauthenticated attacker to alter the information stored in the system.

Reference

https://jvn.jp/en/jp/JVN50862842/ https://main.next-engine.com/Usernotice/detail?id=1054