A vulnerability classified as problematic has been found in Webkul QloApps up to 1.5.x. This affects an unknown part. The manipulation of the argument id_order leads to information disclosure.

This vulnerability is uniquely identified as CVE-2023-36235. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.