CVE-2018-18449

2019-03-07T23:29:00
ID CVE-2018-18449
Type cve
Reporter cve@mitre.org
Modified 2019-03-08T12:39:00

Description

EmpireCMS 7.5 allows CSRF for adding a user account via an enews=AddUser action to e/admin/user/ListUser.php, a similar issue to CVE-2018-16339.