CSRF in Opensolution Quick.cart
CVE-2025-10317
Quick.Cart is vulnerable to Cross-Site Request Forgery in product creation functionality. Malicious attacker can craft special website, which when visited by the admin, will automatically send a POST request creating a malicious product wi…
Vulnerability class: CSRF (Cross-Site Request Forgery)
EPSS: 0.002 (9.2th percentile) — read the EPSS interpretation.
Affected products
- Opensolution Quick.cart — versions 6.7
Weakness classification (CWE)
References
- cvd@cert.pl (third-party-advisory)
- cvd@cert.pl (product)