OXID eShop versions prior to 6.0.0 RC2, 5.2.x before 5.2.10, and 4.10.x before 4.10.5 allowing remote attackers to hijack client's cart session via CSRF
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
CVE | CVE-2017-12415 | 20 Feb 201823:29 | – | cve |
Prion | Cross site request forgery (csrf) | 20 Feb 201823:29 | – | prion |
NVD | CVE-2017-12415 | 20 Feb 201823:29 | – | nvd |
Source | Link |
---|---|
oxidforge | www.oxidforge.org/en/security-bulletin-2017-001.html |
bugs | www.bugs.oxid-esales.com/view.php |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo