CSRF Vulnerability in Magento Community and Enterprise Editions

CSRF Vulnerability in Magento Community and Enterprise Editions

CVE-2018-5301 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:P

Magento Community Edition and Enterprise Edition before 2.0.10 and 2.1.x before 2.1.2 have CSRF resulting in deletion of a customer address from an address book, aka APPSEC-1433.

Learn more about our App Sec Academy.