CVE-2017-2143
N/A
N/A
Summary
CS-Cart Japanese Edition v4.3.10-jp-1 and earlier, CS-Cart Multivendor Japanese Edition v4.3.10-jp-1 and earlier allows remote attackers to bypass access restriction to create a request to return a customer purchased item via rma.post.php.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Frogman Office Inc. | CS-Cart Japanese Edition | v4.3.10-jp-1 and earlier | affected |
| Frogman Office Inc. | CS-Cart Multivendor Japanese Edition | v4.3.10-jp-1 and earlier | affected |
Weaknesses
- Fails to restrict access
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.