← back
CVE-2017-2143

CVE-2017-2143

EPSS 1.1%
CS-Cart Japanese Edition v4.3.10-jp-1 and earlier, CS-Cart Multivendor Japanese Edition v4.3.10-jp-1 and earlier allows remote attackers to bypass access restriction to create a request to return a customer purchased item via rma.post.php.
Affected products
Frogman Office Inc. · CS-Cart Japanese EditionFrogman Office Inc. · CS-Cart Multivendor Japanese Edition

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://jvn.jp/en/jp/JVN25598952/index.htmlhttp://tips.cs-cart.jp/fix-jvn-25598952.html