An issue exists in SmartStoreNET prior to 4.1.0. Lack of Cross Site Request Forgery (CSRF) protection may lead to elevation of privileges (e.g., /admin/customer/create to create an admin account).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
smartstore smartstorenet |