CVE-2018-17366
MCMS 4.6.5 is affected by a CSRF vulnerability that can add an administrator account via ms/basic/manager/save.do. The CVSS metrics indicate high impact (CVSS‑3.0 base score 8.8, HIGH) with network attack vector and user interaction required. The CVSS‑2 entry is 6.8 (MEDIUM). No exploitation deta...