CVE-2013-5977
The CVE-2013-5977 issue is a CSRF vulnerability in the Cart66 Lite WordPress plugin (Cart66Product.php) affecting versions before 1.5.1.15. It allows remote attackers to hijack administrator authentication for requests to wp-admin/admin.php that create/modify products and can enable XSS via the P...