Description
OFBiz has an authentication bypass vulnerability. An attacker can bypass the authentication with a specially crafted HTTP request and get full access to the system.
Remediation
Upgrade to the latest version of OFBiz
References
Related Vulnerabilities
Oracle Database Server Other Vulnerability (CVE-2007-3857)
WebLogic CVE-2018-2987 Vulnerability (CVE-2018-2987)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-45038)
Magento CVE-2019-8133 Vulnerability (CVE-2019-8133)
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-42029)