3 matches found
CVE-2018-12739
In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to CVE-2018-10266...
BEESCMS 4.0 - Cross-Site Request Forgery (Add Admin)
Exploit Title: A CSRF vulnerability exists in BEESCMSV4.0: The administrator can be added arbitrarily. Date: 2018-06-25 Exploit Author: bay0net Vendor Homepage: https://www.cnblogs.com/v1vvwv/p/9226389.html Software Link: http://www.beescms.com/ Version: BEESCMS - V4.0 CVE : CVE-2018-12739 A CSRF...
SDCMS V1.1 Arbitrary Administrator Addition Vulnerability in Frontend
SDCMS is a PHP 3-in-1 website management system independently developed by Fireworks Network. SDCMS V1.1 foreground exists arbitrary administrator to add a vulnerability, an attacker can use the vulnerability in the foreground to arbitrarily add an administrator account...