3 matches found
CVE-2018-17429
creationtimestamp| type| source ---|---|--- 2019-03-08 02:21:44+00:00| seen| https://t.me/cibsecurity/2959...
CVE-2018-17429
/console/account/manage.php?type=action&action=add in JTBC v3.0C has CSRF for adding an administrator account...
CVE-2018-17429
CVE-2018-17429 refers to a CSRF vulnerability in JTBC v3.0(C) where requests to /console/account/manage.php?type=action&action=add can be forged to add an administrator account. A remote attacker can exploit this CSRF to elevate privileges by creating a new admin account. The reports in CNVD/othe...