PT-2026-55869 · Pypi · Ecommerceflask

Flashzyc

·

Published

2026-07-06

·

Updated

2026-07-06

·

CVE-2026-14800

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions imhamzaazam ecommerceFlask versions prior to cb7d9e24c30a99379651b7493b32048126ef402b
Description A remote manipulation of an unknown function allows for Cross-Site Request Forgery (CSRF), a type of attack that forces an authenticated user to execute unwanted actions on a web application.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Authorization

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-14800

Affected Products

Ecommerceflask