Opensolution: >> Quick.cart >> 3.4 Security Vulnerabilities
Multiple cross-site request forgery (CSRF) vulnerabilities in Quick.Cart 3.4 allow remote attackers to hijack the authentication of the administrator for requests that (1) delete orders via an orders-delete action to admin.php, and possibly (2) delete products or (3) delete pages via unspecified vectors.
CVSS Score
6.8
EPSS Score
0.001
Published
2009-12-01