Vulnerabilities > Commerceguys > Commerce Reorder > 7.x.1.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-08-31 | CVE-2012-2116 | Cross-Site Request Forgery (CSRF) vulnerability in Commerceguys Commerce Reorder 7.X1.0/7.X1.X Cross-site request forgery (CSRF) vulnerability in the Commerce Reorder module before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of arbitrary users for requests that add items to the shopping cart. | 6.8 |