CVE-2018-15186
The CVE refers to a CSRF vulnerability in PHP Scripts Mall Chartered Accountant: Auditor Website 2.0.1, exploitable via the endpoint client/auditor/updprofile.php. The connected documents corroborate CSRF in this URL path, but do not provide exploit code, affected versions beyond 2.0.1, or remedi...