Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:46 a.m.7 views

CVE-2022-31000

solidusbackend is the admin interface for the Solidus e-commerce framework. Versions prior to 3.1.6, 3.0.6, and 2.11.16 contain a cross-site request forgery CSRF vulnerability. The vulnerability allows attackers to change the state of an order's adjustments if they hold its number, and the...

4.3CVSS7AI score0.00367EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/06/01 5:25 p.m.27 views

CVE-2022-31000 CSRF allows attacker to finalize/unfinalize order adjustments in solidus_backend

solidusbackend is the admin interface for the Solidus e-commerce framework. Versions prior to 3.1.6, 3.0.6, and 2.11.16 contain a cross-site request forgery CSRF vulnerability. The vulnerability allows attackers to change the state of an order's adjustments if they hold its number, and the...

2.3CVSS5AI score0.00367EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/06/01 5:25 p.m.7 views

CVE-2022-31000 CSRF allows attacker to finalize/unfinalize order adjustments in solidus_backend

solidusbackend is the admin interface for the Solidus e-commerce framework. Versions prior to 3.1.6, 3.0.6, and 2.11.16 contain a cross-site request forgery CSRF vulnerability. The vulnerability allows attackers to change the state of an order's adjustments if they hold its number, and the...

2.3CVSS5.1AI score0.00367EPSS
Exploits1References2
CVE
CVE
added 2022/06/01 5:25 p.m.531 views

CVE-2022-31000

The CVE concerns solidus_backend, the admin interface of the Solidus e-commerce framework. Versions prior to 3.1.6, 3.0.6, and 2.11.16 are affected by a cross-site request forgery (CSRF) that lets an attacker change the state of an order’s adjustments if they know the order number, with the actio...

4.3CVSS4.3AI score0.00367EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder