Back to search
CVE-2018-16483
Published: Feb 1, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
A deficiency in the access control in module express-cart <=1.1.5 allows unprivileged users to add new users to the application as administrators.
| Vendor | Product | Versions |
|---|---|---|
HackerOne | express-cart | affected >=1.1.6 |
References
https://hackerone.com/reports/343626
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now