8 matches found
CVE-2018-19561
sikcms 1.1 has CSRF via admin.php?m=Admin=Users=userAdd to add an administrator account...
EUVD-2018-11250
Malware in sbrugna...
CVE-2018-19561
sikcms 1.1 has CSRF via admin.php?m=Admin&c=Users&a=userAdd to add an administrator account...
CVE-2018-19561
sikcms 1.1 has CSRF via admin.php?m=Admin&c=Users&a=userAdd to add an administrator account...
Cross site request forgery (csrf)
sikcms 1.1 has CSRF via admin.php?m=Admin&c=Users&a=userAdd to add an administrator account...
CVE-2018-19561
Affected software: sikcms version 1.1. Vulnerability: Cross-Site Request Forgery (CSRF) in admin.php?m=Admin&c=Users&a=userAdd that allows an attacker to add an administrator account. Root cause/impact: CSRF enables unauthorized privilege escalation by creating an admin account. Exploitation deta...
sikcms Cross-Site Request Forgery Vulnerability
sikcms Cisco CMS is a backend content management system. A cross-site request forgery vulnerability exists in sikcms version 1.1. A remote attacker can add an administrator account with the help of the /sikcms/admin.php?m=Admin&c=Users&a=userAdd URL...
Cisco SikCMS Website Builder 1.1 suffers from SQL Injection Vulnerability
Cisco CMS content management system is a simple and practical, scalable, flexible changes, lightweight CMS. Cisco SikCMS Building System 1.1 suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...