3 matches found
CVE-2018-18922
adduser in AbiSoft Ticketly 1.0 allows remote attackers to create administrator accounts via an action/adduser.php POST request...
CVE-2018-18922
adduser in AbiSoft Ticketly 1.0 allows remote attackers to create administrator accounts via an action/adduser.php POST request...
CVE-2018-18922
CVE-2018-18922 affects AbiSoft Ticketly 1.0. A POST to /action/add_user.php without authentication lets remote attackers create administrator accounts, enabling privilege escalation. Public references document PoCs and exploits (e.g., Exploit-DB entry 45892; other sources). The available data con...