CSRF Vulnerability in Juunan06 eCommerce Allows Unauthorized User and Product Manipulation

CSRF Vulnerability in Juunan06 eCommerce Allows Unauthorized User and Product Manipulation

CVE-2018-15202 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An issue was discovered in Juunan06 eCommerce through 2018-08-05. There is a CSRF vulnerability in ee/eBoutique/app/template/includes/crudTreatment.php that can add new users and add products.

Learn more about our User Device Pen Test.