Описание
Shopizer 1.1.5 and earlier allows remote attackers to modify the account settings of arbitrary users via the customer.customerId parameter to shop/profile/register.action.
Shopizer 1.1.5 and earlier allows remote attackers to modify the account settings of arbitrary users via the customer.customerId parameter to shop/profile/register.action.
EPSS
Процентиль: 88%
0.03861
Низкий
CVE ID
Связанные уязвимости
nvd
больше 11 лет назад
Shopizer 1.1.5 and earlier allows remote attackers to modify the account settings of arbitrary users via the customer.customerId parameter to shop/profile/register.action.
EPSS
Процентиль: 88%
0.03861
Низкий