storefront 跨站请求伪造漏洞

storefront is a SaaS solution open-sourced by Selldone. A security vulnerability exists in storefront v.1.0, which stems from a cross-site request forgery in the index.html component that could lead to elevation of privilege...