CVE-2023-32065

Name of the Vulnerable Software and Affected Versions OroCommerce versions prior to 5.0.11 OroCommerce versions prior to 5.1.1

Description The issue allows detailed order totals information to be received by Order ID, and detailed checkout totals information may be received by Checkout ID.

Recommendations For versions prior to 5.0.11, update to version 5.0.11 or later. For versions prior to 5.1.1, update to version 5.1.1 or later.