EPSS
Percentile
46.3%
bagisto/bagisto is vulnerable to cross-site request forgery (CSRF). The vulnerability exists as sensitive admin endpoints were allowed to use the GET method instead of POST.
forums.bagisto.com/category/1/announcements
github.com/bagisto/bagisto/issues/750
github.com/prashant-webkul/bagisto/commit/6a4cb016c4b1fa218c86b19b944fe88cab89c82d