CVE-2018-15849
CVE-2018-15849 affects portfolioCMS 1.0.5. The CNVD record describes a cross-site request forgery vulnerability that allows a remote attacker to update website settings via admin/aboutus.php. Only CSRF is specified; no exploit details are provided here. CVSSv3 base score is 4.3 (MEDIUM). No remed...