RSS   Vulnerabilities for 'Auctionworx'   RSS

2022-05-02
 
CVE-2022-23904

CWE-352
 

 
Rainworx Auctionworx < 3.1R2 is vulnerable to a Cross-Site Request Forgery (CSRF) attack that allows an authenticated user to upgrade his account to admin and gain access to the auctionworx admin control panel. This vulnerability affects AuctionWorx Enterprise and AuctionWorx: Events Edition.

 

 >>> Vendor: Rainworx 2 Products
Rwauction pro
Auctionworx


Copyright 2024, cxsecurity.com

 

Back to Top