CSRF Vulnerability in Magento Community and Enterprise Editions
CVE-2018-5301 · MEDIUM Severity
AV:N/AC:M/AU:N/C:N/I:P/A:P
Magento Community Edition and Enterprise Edition before 2.0.10 and 2.1.x before 2.1.2 have CSRF resulting in deletion of a customer address from an address book, aka APPSEC-1433.
Learn more about our App Sec Academy.