CVE-2026-14800
imhamzaazam ecommerceFlask cross-site request forgery
CVSS Score
4.3
EPSS Score
0.2%
EPSS Percentile
5th
A weakness has been identified in imhamzaazam ecommerceFlask up to cb7d9e24c30a99379651b7493b32048126ef402b. The affected element is an unknown function. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The project was informed of the problem early through an issue report but has not responded yet.
| CWE | CWE-352 CWE-862 |
| Vendor | imhamzaazam |
| Product | ecommerceflask |
| Published | Jul 6, 2026 |
| Last Updated | Jul 6, 2026 |
Stay Ahead of the Next One
Get instant alerts for imhamzaazam ecommerceflask
Be the first to know when new medium vulnerabilities affecting imhamzaazam ecommerceflask are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
imhamzaazam / ecommerceFlask
cb7d9e24c30a99379651b7493b32048126ef402b
References
vuldb.com: https://vuldb.com/vuln/376394 vuldb.com: https://vuldb.com/vuln/376394/cti vuldb.com: https://vuldb.com/cve/CVE-2026-14800 vuldb.com: https://vuldb.com/submit/850853 github.com: https://github.com/imhamzaazam/ecommerceFlask/issues/1 github.com: https://github.com/imhamzaazam/ecommerceFlask/
Credits
๐ flashzyc (VulDB User) VulDB CNA Team