Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
VirtueMart - Cross Site Request Forgery (CSRF)
Vulnerability Description
A Cross-Site Request Forgery (CSRF) vulnerability exists in the product image upload function of VirtueMart that bypasses the CSRF protection token. An attacker is able to craft a special CSRF request which will allow unrestricted file upload into the VirtueMart media manager.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
VirtueMart 安全漏洞
Vulnerability Description
VirtueMart是VirtueMart公司的一款开源电子商务应用程序,旨在作为 Mambo 或 Joomla! 的扩展。 VirtueMart存在安全漏洞,该漏洞源于跨站请求伪造保护绕过,可能导致任意文件上传。
CVSS Information
N/A
Vulnerability Type
N/A