CVE-2019-18884

index.php/teammembers/addteammember in RISE Ultimate Project Manager 2.3 has CSRF for adding authorized users...

CVE-2019-18884

creationtimestamp| type| source ---|---|--- 2024-02-13 15:36:20+00:00| seen| https://t.me/ctinow/183887...

CVE-2017-18884

creationtimestamp| type| source ---|---|--- 2020-06-19 22:55:31+00:00| seen| https://t.me/cibsecurity/12923...

CVE-2017-18884

Mattermost Server versions before 4.3.0, 4.2.1, and 4.1.2 are affected by an authorization issue where an attacker can gain privileges by abusing a registered OAuth application with personal access tokens. The connected documents consistently describe this specific vector and the vulnerable compo...

CVE-2019-18884

index.php/teammembers/addteammember in RISE Ultimate Project Manager 2.3 has CSRF for adding authorized users...

CVE-2019-18884

The CVE-2019-18884 issue affects the RISE Ultimate Project Manager 2.3 product, specifically the index.php/team_members/add_team_member endpoint. The connected sources confirm a Cross-Site Request Forgery (CSRF) weakness that allows an attacker to add authorized users, due to CSRF in that endpoin...

RISE Ultimate Project Manager 2.3 Cross Site Request Forgery

Exploit Title: RISE - Ultimate Project Manager v2.3 - Cross-Site Request Forgery Add Admin Date: 11-11-2019 Exploit Author: Ismail Tasdelen Vendor Homepage: http://fairsketch.com/ Software Link : https://codecanyon.net/item/rise-ultimate-project-manager/15455641 Software : RISE - Ultimate Project...