RSS   Vulnerabilities for 'Bagisto'   RSS

2019-09-18
 
CVE-2019-16403

CWE-863
 

 
In Webkul Bagisto before 0.1.5, the functionalities for customers to change their own values (such as address, review, orders, etc.) can also be manipulated by other customers.

 
2019-08-11
 
CVE-2019-14933

CWE-352
 

 
Bagisto 0.1.5 allows CSRF under /admin URIs.

 

 >>> Vendor: Webkul 3 Products
Com ultimateportfolio
Bagisto
Krayin


Copyright 2024, cxsecurity.com

 

Back to Top