Opencart Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2010-1610 - Vulnerability Database

Opencart Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2010-1610

Medium
Reference: CVE-2010-1610
Title: Opencart Cross-Site Request Forgery (CSRF) Vulnerability
Overview:

Cross-site request forgery (CSRF) vulnerability in index.php in OpenCart 1.4 allows remote attackers to hijack the authentication of an application administrator for requests that create an administrative account via a POST request with the route parameter set to quotuser/user/insert.quot NOTE: some of these details are obtained from third party information.