15 matches found
CVE-2019-13370
index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator...
CVE-2018-15203
An issue was discovered in Ignited CMS through 2017-02-19. ign/index.php/admin/pages/addpage allows a CSRF attack to add pages...
CVE-2019-13370
index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator...
CVE-2019-13370
index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator...
Cross site request forgery (csrf)
index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator...
CVE-2019-13370
CVE-2019-13370 is an Ignited CMS CSRF risk affecting the endpoint at /index.php/admin/permissions, exploitable to add an administrator. The Red Hat/CNVD/PT-Security entries confirm that the issue exists in Ignited CMS versions prior to 2017-02-19, stemming from insufficient origin/authentication ...
CVE-2019-13370
index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator...
Ignited CMS Cross-Site Request Forgery Vulnerability
Ignited CMS is a content management system CMS. A cross-site request forgery vulnerability exists in Ignited CMS 2017-02-19 and prior versions. A remote attacker can exploit the vulnerability to add a page with the help of ign/index.php/admin/pages/addpage URL...
CVE-2018-15203
An issue was discovered in Ignited CMS through 2017-02-19. ign/index.php/admin/pages/addpage allows a CSRF attack to add pages...
Cross site request forgery (csrf)
An issue was discovered in Ignited CMS through 2017-02-19. ign/index.php/admin/pages/addpage allows a CSRF attack to add pages...
CVE-2018-15203
An issue was discovered in Ignited CMS through 2017-02-19. ign/index.php/admin/pages/addpage allows a CSRF attack to add pages...
CVE-2018-15203
An issue was discovered in Ignited CMS through 2017-02-19. ign/index.php/admin/pages/addpage allows a CSRF attack to add pages...
CVE-2018-15203
An issue was discovered in Ignited CMS through 2017-02-19. ign/index.php/admin/pages/addpage allows a CSRF attack to add pages...
CVE-2018-15203
CVE-2018-15203 affects Ignited CMS (up to 2017-02-19). The vulnerability is a CSRF in ign/index.php/admin/pages/add_page that allows an attacker to add pages. The Red Hat/CNVD/CVE records confirm the issue and its existence in Ignited CMS prior to 2017-02-19; no vendor-provided patch details are ...
PT-2018-12945 · Ignited · Ignited Cms
Name of the Vulnerable Software and Affected Versions: Ignited CMS versions prior to 2017-02-19 Description: The issue allows a CSRF attack, enabling an attacker to add pages. This is possible through the "ign/index.php/admin/pages/add page" API endpoint, specifically by manipulating the request ...