Description
Magento Community Edition and Enterprise Edition before 2.0.10 and 2.1.x before 2.1.2 have CSRF resulting in deletion of a customer address from an address book, aka APPSEC-1433.
Remediation
References
Related Vulnerabilities
MediaWiki Uncontrolled Recursion Vulnerability (CVE-2022-28201)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4299)
WordPress 2.0.9 Multiple Vulnerabilities (2.0 - 2.0.9)
WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.9)
Play Framework Out-of-bounds Write Vulnerability (CVE-2020-27196)