CVE-2023-26689

An issue discovered in CS-Cart MultiVendor 4.16.1 allows attackers to alter arbitrary user account profiles via crafted post request.
Configurations

No configuration.

History

26 Sep 2024, 13:32

Type Values Removed Values Added
Summary
  • (es) Un problema descubierto en CS-Cart MultiVendor 4.16.1 permite a los atacantes alterar perfiles de cuentas de usuario arbitrarias a través de solicitudes de publicaciones manipuladas.

25 Sep 2024, 01:35

Type Values Removed Values Added
CWE CWE-286
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8

25 Sep 2024, 01:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-25 01:15

Updated : 2024-09-26 13:32


NVD link : CVE-2023-26689

Mitre link : CVE-2023-26689

CVE.ORG link : CVE-2023-26689


JSON object : View

Products Affected

No product.

CWE
CWE-286

Incorrect User Management