LiteCart through 2.2.1 allows admin/?app=users&doc=edit_user CSRF to add a user.
References
Link | Resource |
---|---|
https://cert.ikiu.ac.ir/public-files/pages/attachments/11/5a8ed1c216e1a910e413535207563845.pdf | Third Party Advisory |
https://uploadboy.com/7njf43f167is/384/mp4 | Exploit Third Party Advisory |
https://cert.ikiu.ac.ir/public-files/pages/attachments/11/5a8ed1c216e1a910e413535207563845.pdf | Third Party Advisory |
https://uploadboy.com/7njf43f167is/384/mp4 | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 05:39
Type | Values Removed | Values Added |
---|---|---|
References | () https://cert.ikiu.ac.ir/public-files/pages/attachments/11/5a8ed1c216e1a910e413535207563845.pdf - Third Party Advisory | |
References | () https://uploadboy.com/7njf43f167is/384/mp4 - Exploit, Third Party Advisory |
Information
Published : 2020-02-25 18:15
Updated : 2024-11-21 05:39
NVD link : CVE-2020-9018
Mitre link : CVE-2020-9018
CVE.ORG link : CVE-2020-9018
JSON object : View
Products Affected
litecart
- litecart
CWE
CWE-352
Cross-Site Request Forgery (CSRF)