o Hometory Co.,Ltd released security update to address improper input validation vulnerability in Mangboard commerce package.
|improper input validation
o Improper input validation vulnerability in Mangboard commerce package could lead to occur for abnormal request.
o A remote attacker can exploit this vulnerability to manipulate the total order amount into a negative number and then pay for the order.
□ Affected Product
|Mangboard commerce package
||prior of 1.3.8
||Linux, Windows and etc..
o Update software over Mangboard commerce package 1.3.9 version or higher.
o Thanks to Song Inbong for reporting this vulnerability.
□ 작성 : 침해사고분석단 취약점분석팀