4 matches found
CVE-2023-51533
Cross-Site Request Forgery CSRF vulnerability in Ecwid Ecommerce Ecwid Ecommerce Shopping Cart.This issue affects Ecwid Ecommerce Shopping Cart: from n/a through 6.12.4...
CVE-2023-51533
CVE-2023-51533 affects the WordPress Ecwid Ecommerce Shopping Cart plugin (versions up to 6.12.4). The vulnerability is a Cross-Site Request Forgery (CSRF) flaw caused by missing nonce validation on several AJAX-triggered functions (in includes/class-ecwid-admin-storefront-page.php). Impact invol...
CVE-2023-51533 WordPress Ecwid Shopping Cart Plugin <= 6.12.4 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Ecwid Ecommerce Ecwid Ecommerce Shopping Cart.This issue affects Ecwid Ecommerce Shopping Cart: from n/a through 6.12.4...
WordPress Ecwid Shopping Cart Plugin <= 6.12.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Ecwid Shopping Cart Type Plugin Vulnerable versions = 6.12.4 Fixed in 6.12.5 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-51533 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID bab8810452b9 Credits Brandon Rolda...