Lucene search
K

4 matches found

0day.today
0day.today
added 2018/08/28 12:0 a.m.32 views

Gleez CMS 1.2.0 - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: Gleez CMS 1.2.0 - Cross-Site Request Forgery Add Admin Exploit Author: GunEggWang Vendor Homepage: https://gleezcms.org/ Software Link: https://github.com/gleez/cms Version: 1.2.0 CVE : CVE-2018-15845 Description: There is a CSR...

0.2AI score0.02331EPSS
Exploits4
Packet Storm
Packet Storm
added 2018/08/27 12:0 a.m.37 views

Gleez CMS 1.2.0 Cross Site Request Forgery

Exploit Title: Gleez CMS 1.2.0 - Cross-Site Request Forgery Add Admin Date: 2018-08-24 Exploit Author: GunEggWang Vendor Homepage: https://gleezcms.org/ Software Link: https://github.com/gleez/cms Version: 1.2.0 CVE : CVE-2018-15845 Description: There is a CSRF vulnerability that can add an...

0.7AI score0.02331EPSS
Exploits4
Exploit DB
Exploit DB
added 2018/08/27 12:0 a.m.60 views

Gleez CMS 1.2.0 - Cross-Site Request Forgery (Add Admin)

Exploit Title: Gleez CMS 1.2.0 - Cross-Site Request Forgery Add Admin Date: 2018-08-24 Exploit Author: GunEggWang Vendor Homepage: https://gleezcms.org/ Software Link: https://github.com/gleez/cms Version: 1.2.0 CVE : CVE-2018-15845 Description: There is a CSRF vulnerability that can add an...

8.8CVSS8.8AI score0.02331EPSS
Exploits4
CVE
CVE
added 2018/08/25 9:0 p.m.65 views

CVE-2018-15845

Summary: CVE-2018-15845 is a CSRF vulnerability in Gleez CMS 1.2.0 that allows an attacker to add an administrator account via the admin/users/add endpoint. The issue is documented across multiple feeds (CVE, OSV, CNVD, GitHub advisories, Exploit DB). The root cause is a cross-site request forger...

8.8CVSS8.5AI score0.02331EPSS
Exploits4References2Affected Software1
Rows per page
Query Builder