Description
Cross Site Request Forgery (CSRF) vulnerability in Express cart v1.1.16 allows attackers to add an administrator account, add discount code or other unspecified impacts.
Remediation
References
https://github.com/mrvautin/expressCart/issues/120
Related Vulnerabilities
CVE-2023-32995 Vulnerability in maven package io.jenkins.plugins:miniorange-saml-sp
CVE-2023-49655 Vulnerability in maven package org.jenkins-ci.plugins:matlab
CVE-2020-2186 Vulnerability in maven package org.jenkins-ci.plugins:ec2
CVE-2018-5673 Vulnerability in maven package org.apache.geronimo.plugins:dojo
CVE-2022-29002 Vulnerability in maven package com.xuxueli:xxl-job