Vulnerabilities (CVE)

Filtered by vendor Commerceguys Subscribe
Filtered by product Commerce Reorder
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2116 2 Commerceguys, Drupal 2 Commerce Reorder, Drupal 2024-11-21 6.8 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in the Commerce Reorder module before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of arbitrary users for requests that add items to the shopping cart.