Commerceguys » Commerce Reorder : Security Vulnerabilities, CVEs,
Cross-site request forgery (CSRF) vulnerability in the Commerce Reorder module before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of arbitrary users for requests that add items to the shopping cart.
Max CVSS
6.8
EPSS Score
0.14%
Published
2012-08-31
Updated
2012-09-04
1 vulnerabilities found