CVE-2023-38130

CVE-2023-38130

EPSS 0.4%

Cross-site request forgery (CSRF) vulnerability in CubeCart prior to 6.5.3 allows a remote unauthenticated attacker to delete data in the system.

Affected products

CubeCart Limited · CubeCart

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://forums.cubecart.com/topic/58736-cubecart-653-released-security-update/https://jvn.jp/en/jp/JVN22220399/