5 matches found
CVE-2018-10223
An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add an admin account via /index.php/admin/adminmanage/add.html...
Cross site request forgery (csrf)
An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add an admin account via /index.php/admin/adminmanage/add.html...
CVE-2018-10223
An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add an admin account via /index.php/admin/adminmanage/add.html...
CVE-2018-10224
An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add a tag via /index.php/admin/tag/add.html...
CVE-2018-10223
CVE-2018-10223 affects YzmCMS 3.8. It is a Cross-Site Request Forgery (CSRF) vulnerability in /index.php/admin/admin_manage/add.html that can add an administrator account. Implication: attacker could obtain admin privileges on the affected system. Root cause: CSRF flaw enabling unauthorized admin...