CSRF in Imhamzaazam Ecommerceflask
CVE-2026-14800
A weakness has been identified in imhamzaazam ecommerceFlask up to cb7d9e24c30a99379651b7493b32048126ef402b. The affected element is an unknown function. This manipulation causes cross-site request forgery. The attack may be initiated remo…
Vulnerability class: CSRF (Cross-Site Request Forgery)
CVSS v3 metric
CVSS v3 base score 4.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N.
Affected products
- Imhamzaazam Ecommerceflask — versions cb7d9e24c30a99379651b7493b32048126ef402b
Weakness classification (CWE)
References
- VDB-376394 | imhamzaazam ecommerceFlask cross-site request forgery (vdb-entry)
- VDB-376394 | CTI Indicators (IOB, IOC) (signature, permissions-required)
- CVE-2026-14800 | CVE Analysis and Report (third-party-advisory)
- Submit #850853 | imhamzaazam ecommerceFlask v1.0 CSRF (third-party-advisory)
- cna@vuldb.com (issue-tracking, exploit)
- cna@vuldb.com (product)
Frequently asked questions
- What is CVE-2026-14800?
- CVE-2026-14800 is a medium-severity vulnerability in Imhamzaazam Ecommerceflask, classified under Cross-Site Request Forgery (CSRF). CVSS score: 4.3/10. Published 2026-07-06.
- How severe is CVE-2026-14800?
- Medium severity. CVSS v3 base score is 4.3 out of 10.