2 matches found
CVE-2018-13010
WSTMall v1.9.1170316 has CSRF via the index.php?m=Admin=Users=edit URI to add a user account...
CVE-2018-13010
WSTMall v1.9.1_170316 is affected by a Cross-Site Request Forgery (CSRF) that can be exploited via the URL index.php?m=Admin&c=Users&a=edit to add a user account. The CVE-2018-13010 entry is corroborated by multiple sources (NVD entry and CNVD/Red Hat/PRION mirrors) describing CSRF to create new ...