2 matches found
CVE-2009-4572
Cross-site request forgery CSRF vulnerability in PhpShop 0.8.1 allows remote attackers to hijack the authentication of arbitrary users for requests that invoke the cartAdd function in a shop/cart action to the default URI...
CVE-2009-4572
CVE-2009-4572 describes a Cross-site Request Forgery (CSRF) vulnerability in PhpShop 0.8.1 that allows remote attackers to hijack the authentication of arbitrary users by crafting requests to the cartAdd function in the shop/cart action at the default URI. The vulnerability hinges on the authenti...