A vulnerability, which was classified as problematic, has been found in spa-cartcms 1.9.0.6. This issue affects some unknown processing of the file /checkout of the component Checkout Page. The manipulation of the argument quantity with the input
-10
leads to enforcement of behavioral workflow.
The identification of this vulnerability is CVE-2024-6128. The attack may be initiated remotely. Furthermore, there is an exploit available.