Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Magento Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2019-7865 - Vulnerability Database
Magento

Magento Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2019-7865

High
Reference: CVE-2019-7865
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-7865
Title: Magento Cross-Site Request Forgery (CSRF) Vulnerability
Overview:

A cross-site request forgery (CSRF) vulnerability exists in the checkout cart item of Magento 2.1 prior to 2.1.18 Magento 2.2 prior to 2.2.9 Magento 2.3 prior to 2.3.2. This could be exploited at the time of editing or configuration.