It’s unclear what number of enterprises make use of Apache OFBiz as many organizations may use it internally, however primarily based on public knowledge identified customers embody giant organizations corresponding to IBM, HP, Accenture, United Airways, House Depot, and Upwork. Some third-party business purposes, corresponding to Atlassian JIRA, additionally use OFBiz modules. The mission is used globally and throughout many industries, however over 40% of identified customers are primarily based within the US.
The Open Internet Utility Safety Challenge (OWASP) not too long ago up to date its checklist of high 10 open supply security dangers for enterprises, with identified vulnerabilities topping the checklist.
New flaw discovered by analyzing earlier one
The brand new flaw is situated within the override view performance and permits unauthenticated attackers to entry delicate and restricted endpoints utilizing specifically crafted requests. This could pave the best way for distant code execution.
