Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in index.php in OpenCart 1.4 allows remote attackers to hijack the authentication of an application administrator for requests that create an administrative account via a POST request with the route parameter set to "user/user/insert." NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenCart 'index.php'跨站请求伪造漏洞
Vulnerability Description
OpenCart是基于PHP的开源在线购物车系统。 OpenCart的index.php存在跨站请求伪造(CSRF)漏洞,远程攻击者可以通过带有将route参数设置为"user/user/insert"的POST请求,劫持应用管理员认证,然后发送创建管理账户的请求。
CVSS Information
N/A
Vulnerability Type
N/A