CVE-2024-11142

Published: May 2, 2025Modified: Jun 2, 2026

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD (Secondary)

Description

Cross-Site Request Forgery (CSRF) vulnerability in Gosoft Software Proticaret E-Commerce allows Cross Site Request Forgery. This issue affects Proticaret E-Commerce: before v6.0 NOTE: According to the vendor, fixing process is still ongoing for v4.05.

Affected (1)

Products: Proticaret: Proticaret

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Proticaret Proticaret	Before 6.0

Related CWEs

Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References (2)

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0098

Source: iletisim@usom.gov.tr

https://www.usom.gov.tr/bildirim/tr-25-0098

Source: iletisim@usom.gov.tr

Third Party Advisory

Timeline

No history available yet.