Expresscart Project: >> Expresscart >> 1.0.1 Security Vulnerabilities
expressCart before 1.1.6 allows remote attackers to create an admin user via a /admin/setup Referer header.
CVSS Score
8.8
EPSS Score
0.006
Published
2018-06-15