CVE-2010-1542

Published: Apr 26, 2010Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in admin/configure.php in DFD Cart 1.198, 1.197, and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) conduct cross-site scripting (XSS) attacks or (2) change unspecified settings.

Affected (12)

Products: Dragonfrugal: Dfd Cart

Dragonfrugal

1 product

Dfd Cart

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Dragonfrugal Dfd Cart	Up to 1.198
Dragonfrugal Dfd Cart	Version 1.1.4
Dragonfrugal Dfd Cart	Version 1.1.5
Dragonfrugal Dfd Cart	Version 1.1.6
Dragonfrugal Dfd Cart	Version 1.1.7
Dragonfrugal Dfd Cart	Version 1.1.8
Dragonfrugal Dfd Cart	Version 1.192
Dragonfrugal Dfd Cart	Version 1.193
Dragonfrugal Dfd Cart	Version 1.194
Dragonfrugal Dfd Cart	Version 1.195
Dragonfrugal Dfd Cart	Version 1.196
Dragonfrugal Dfd Cart	Version 1.197