📦 Odoo

This vulnerability allows remote attackers to create empty databases in Odoo Community and Enterprise versions 11.0 and earlier. Attackers can then connect using default credentials, potentially gaini...

This vulnerability allows authenticated remote attackers to extract sensitive information from Odoo's mail module through an oracle-based attack that reveals data via yes/no responses. It affects Odoo...

An improper access control vulnerability in Odoo's auth_oauth module allows internal users to export OAuth tokens belonging to other users. This affects Odoo Community 15.0 and Odoo Enterprise 15.0 in...

This vulnerability allows authenticated remote users in Odoo to trigger the creation of demonstration data, including user accounts with known credentials. This affects Odoo Community and Enterprise v...