Medium severity4.3NVD Advisory· Published Nov 30, 2023· Updated Apr 28, 2026
CVE-2023-36685
CVE-2023-36685
Description
Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force US LLC CartFlows Pro allows Cross Site Request Forgery.This issue affects CartFlows Pro: from n/a through 1.11.12.
Affected products
2- cpe:2.3:a:brainstormforce:cartflows:*:*:*:*:pro:wordpress:*:*Range: <=1.11.12
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.