25 matches found
CVE-2018-19318
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin=manager=update to change the username and password of the super administrator account...
CVE-2018-19319
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin=gifts=update to change goods prices with the super administrator's privileges...
EUVD-2018-11016
Malware in sbrugna...
EUVD-2018-5990
Malware in sbrugna...
EUVD-2018-11017
Malware in sbrugna...
EUVD-2018-5991
Malware in sbrugna...
SRCMS Cross-Site Request Forgery Vulnerability (CNVD-2019-08318)
SRCMS is a security emergency response and defect management software, dedicated to providing large, medium and small businesses and organizations with "the most agile, secure and beautiful security emergency response center building solutions to help companies build their own security emergency...
CVE-2018-19319
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges...
Cross site request forgery (csrf)
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=manager&a=update to change the username and password of the super administrator account...
CVE-2018-19318
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=manager&a=update to change the username and password of the super administrator account...
CVE-2018-19319
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges...
Cross site request forgery (csrf)
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges...
CVE-2018-19318
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=manager&a=update to change the username and password of the super administrator account...
CVE-2018-19318
The CVE-2018-19318 issue affects SRCMS 3.0.0 and is a CSRF vulnerability that can be exploited via admin.php?m=Admin&c=manager&a=update to alter the super administrator’s username and password. Root cause: CSRF on the admin update endpoint allows unauthorized change of credentials. Impact: compro...
CVE-2018-19319
SRCMS 3.0.0 contains a CSRF vulnerability that allows an attacker to change product prices via admin.php?m=Admin&c=gifts&a=update, exploiting the super administrator’s privileges. The issue arises from lack of proper CSRF protection for admin actions, enabling unauthorized price modification. Doc...
CVE-2018-19319
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges...
CVE-2018-19318
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=manager&a=update to change the username and password of the super administrator account...
Design/Logic Flaw
An issue was discovered in SRCMS V2.3.1. There is a CSRF vulnerability that can add a user account via admin.php?m=Admin&c=member&a=add...
Design/Logic Flaw
An issue was discovered in SRCMS V2.3.1. There is a CSRF vulnerability that can add an admin account via admin.php?m=Admin&c=manager&a=add...
CVE-2018-14069
An issue was discovered in SRCMS V2.3.1. There is a CSRF vulnerability that can add a user account via admin.php?m=Admin&c=member&a=add...