2 matches found
CVE-2018-14978
An issue was discovered in QCMS 3.0.1. CSRF exists via the backend/user/admin/add.html URI...
CVE-2018-14978
QCMS 3.0.1 contains a CSRF vulnerability via the backend/user/admin/add.html URI (CVE-2018-14978). The CNVD entry CNVD-2019-10282 documents this issue in QCMS 3.0.1, describing a cross-site forgery that enables unauthorized operations through that endpoint. The CVE entry notes the vulnerability a...