CVE-2022-46806

Cross-Site Request Forgery (CSRF) vulnerability in VillaTheme Cart All In One For WooCommerce plugin <= 1.1.10 leading to cart modification.

CVSS v3.0 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

References

Link	Resource
https://patchstack.com/database/vulnerability/woo-cart-all-in-one/wordpress-cart-all-in-one-for-woocommerce-plugin-1-1-10-cross-site-request-forgery-csrf?_s_id=cve	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:villatheme:cart_all_in_one_for_woocommerce:*:*:*:*:*:wordpress:*:*

Information

Published : 2023-03-01 07:15

Updated : 2023-03-08 12:06

NVD link : CVE-2022-46806

Mitre link : CVE-2022-46806

JSON object : View

CWE

CWE-352

Cross-Site Request Forgery (CSRF)

Products Affected

villatheme