3 matches found
CVE-2023-43149
SPA-Cart 1.9.0.3 is vulnerable to Cross Site Request Forgery CSRF that allows a remote attacker to add an admin user with role status...
SPA-Cart Security Breach
SPA-Cart is a shopping cart software from SPA-Cart, Inc. A security vulnerability exists in SPA-Cart version 1.9.0.6, which stems from the fact that incorrect manipulation of the parameter quantity can lead to the enforcement of a behavioral workflow...
PT-2023-28718 · Spa-Cart · Spa-Cart
Name of the Vulnerable Software and Affected Versions: SPA-Cart version 1.9.0.3 Description: The issue allows a remote attacker to delete all accounts due to a Cross Site Request Forgery CSRF vulnerability. Recommendations: For SPA-Cart version 1.9.0.3, at the moment, there is no information abou...