Default Security bulletin 2017-001 published

Dear all,

the security bulletin 2017-001 is publicly available:

Under certain pre-conditions an attacker would be able to hijack the cart session of a client via a Cross-Site Request Forgery (CSRF). We calculated a CVSS = 2.2.


Will ignore unsolicited support requests via PM, email or IM.
Reply With Quote