Cross-Site Request Forgery Vulnerability in Welcart Plugin for WordPress
CVE-2012-5178
Currently unrated
Summary
The Welcart plugin for WordPress contains a vulnerability that enables remote attackers to exploit cross-site request forgery (CSRF) weaknesses. This flaw could allow attackers to hijack user authentication, facilitating unauthorized purchase actions without the user's consent. Users of the affected plugin versions are urged to update to version 1.2.2 or later to mitigate this security risk.
References
Timeline
Vulnerability Reserved
Vulnerability published