3 matches found
CVE-2018-20598
UCMS 1.4.7 has ?do=useraddpost CSRF...
CVE-2018-20598
UCMS 1.4.7 has ?do=useraddpost CSRF...
CVE-2018-20598
CVE-2018-20598 affects UCMS 1.4.7 and is described in connected records as a Cross-Site Request Forgery (CSRF) vulnerability triggered via the parameter ?do=user_addpost. The vulnerability allows an attacker to abuse CSRF to create an administrator account within UCMS. Root cause is CSRF in the u...