We have practiced manual vulnerability assessment and penetration testing process on Odoo based systems and found general vulnerabilities that were present in system.
Every Cyber-attack is a designed attack - where vulnerabilities will be put in a sequence to get the access of the data or the system. Mentioned vulnerabilities can be used as an attack vector to make the designed attack successful.
It is found that there are more vulnerabilities available in the Odoo platform that are not patched yet. These are based on development standards, server configurations, network and much more. It is better to have a professional Security Test performed to avoid such attacks and future business loss or reputation loss due to them.