CVE-2009-0408
osCommerce 2.2 RC 2a is affected by a Cross‑Site Request Forgery (CSRF) vulnerability that can hijack administrator sessions. The provided Connected document (PacketStorm) describes an authentication bypass that allows unauthorized access to admin pages and potential administrative actions, indic...