Description
A cross-site request forgery vulnerability exists in the GiftCardAccount removal feature for Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.
Remediation
References
Related Vulnerabilities
Sqlite Other Vulnerability (CVE-2022-46908)
WordPress Plugin Build App Online SQL Injection (1.0.18)
WordPress Plugin Content Copy Protection & Prevent Image Save Cross-Site Request Forgery (1.3)
WordPress Plugin File Manager Cross-Site Request Forgery (3.0.1)
WordPress Plugin API Bearer Auth Cross-Site Scripting (20181229)