Cross-site request forgery (CSRF) vulnerability in the Welcart plugin prior to 1.2.2 for WordPress allows remote malicious users to hijack the authentication of arbitrary users for requests that complete a purchase.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
welcart welcart_plugin |
||
welcart welcart_plugin 0.9.1 |
||
welcart welcart_plugin 0.5 |