CVE-2017-2143

Published: 2017-04-28T16:59Z

Last Modified: 2024-11-21T03:22Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

CS-Cart Japanese Edition v4.3.10-jp-1 and earlier, CS-Cart Multivendor Japanese Edition v4.3.10-jp-1 and earlier allows remote attackers to bypass access restriction to create a request to return a customer purchased item via rma.post.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt