CVE-2020-28838

Publication date

2020-12-11 14:19:41

Family

mitre

State

PUBLISHED

Description

Cross Site Request Forgery (CSRF) in CART option in OpenCart Ltd. Opencart CMS 3.0.3.6 allows attacker to add cart items via Add to cart.