CVE-2024-11142

Name of the Vulnerable Software and Affected Versions Gosoft Software Proticaret E-Commerce versions prior to 6.0

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This is a type of attack where an attacker tricks a user into performing an unintended action on a web application that the user is authenticated to. The estimated number of potentially affected devices worldwide is not available.

Recommendations For versions prior to 6.0, update to version 6.0 or later once it is available, as the fixing process is still ongoing for earlier versions, such as v4.05. At the moment, there is no information about additional mitigation measures for this issue.