Webkul: >> Bagisto >> 2.3.6 Security Vulnerabilities
An issue WebKul Bagisto v.2.3.6 allows a remote attacker to execute arbitrary code via the Cart/Checkout API endpoint, specifically, the price calculation logic fails to validate quantity inputs properly.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-10-09