CVE-2023-45854

A Business Logic vulnerability in Shopkit 1.0 allows an attacker to add products with negative quantities to the shopping cart via the qtd parameter in the add-to-cart function...

CVE-2023-45854

CVE-2023-45854 affects Shopkit 1.0. It is a business logic vulnerability allowing an attacker to add products with negative quantities to the cart through the qtd parameter in the add-to-cart function. Impact described as cart manipulation with negative quantities; no official patch/version remed...