Cross site request forgery (csrf)

Adobe Commerce versions 2.4.2-p2 and earlier, 2.4.3 and earlier and 2.3.7p1 and earlier are affected by a cross-site request forgery CSRF vulnerability via a Wishlist Share Link. Successful exploitation could lead to unauthorized addition to customer cart by an unauthenticated attacker. Access to...

Magento Commerce 跨站请求伪造漏洞

Magento Commerce is designed to provide a best-in-class shopping experience without the need for developer support.A cross-site request forgery vulnerability exists in Adobe Magento Commerce versions 2.4.2-p2 and earlier, 2.4.3 and earlier, and 2.3.7p1 and earlier. The vulnerability stems from a...