CVE-2021-43158

Publication date

2021-12-22 17:27:07

Family

mitre

State

PUBLISHED

Description

In ProjectWorlds Online Shopping System PHP 1.0, a CSRF vulnerability in cart_remove.php allows a remote attacker to remove any product in the customers cart.