CVE-2013-5993

Name of the Vulnerable Software and Affected Versions LOCKON EC-CUBE versions 2.11.0 through 2.13.0

Description A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of arbitrary users via unspecified vectors related to refusals.

Recommendations For versions 2.11.0 through 2.13.0, as a temporary workaround, consider implementing additional authentication checks to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.