CVE-2021-47946 - OpenCart 3.0.36 Account Takeover via Cross Site Request Forgery
CVE ID :CVE-2021-47946 Published : May 10, 2026, 12:44 p.m. | 20 minutes ago Description :OpenCart 3.0.36 contains a cross-site request forgery vulnerability in the /account/edit endpoint that allows unauthenticated attackers to modify victim account details by tricking users into visiting mal
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Summer Travel Is a Mess. The Points Guy Tells Us How to Hack It
- [CYBER] Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak
- [CYBER] CVE-2021-47953 - OpenCart 3.0.3.7 Cross-Site Request Forgery via account/password
- [CYBER] CVE-2021-47951 - WordPress Picture Gallery 1.4.2 Stored XSS via Edit Content URL
- [CYBER] CVE-2021-47950 - Advanced Guestbook 2.4.4 Persistent XSS via Smilies
- [CYBER] CVE-2021-47949 - CyberPanel 2.1 Authenticated Remote Code Execution via Symlink Attack