4 matches found
CVE-2023-43149
SPA-Cart 1.9.0.3 is vulnerable to Cross Site Request Forgery CSRF that allows a remote attacker to add an admin user with role status...
CVE-2023-43149
SPA-Cart 1.9.0.3 is vulnerable to Cross Site Request Forgery CSRF that allows a remote attacker to add an admin user with role status...
CVE-2023-43149
creationtimestamp| type| source ---|---|--- 2023-10-12 16:20:03+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5387 2023-10-12 22:33:22+00:00| seen| https://t.me/cibsecurity/72198...
CVE-2023-43149
CVE-2023-43149 affects SPA-Cart 1.9.0.3. The documents confirm a CSRF vulnerability enabling a remote attacker to add an admin user with role status. They do not provide concrete technical details (endpoints, payloads, root cause) or remediation within the supplied sources. No exploitation specif...