exploitDog

GHSA-mhmq-76cf-28qx

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.

Ссылки

EPSS

Процентиль: 35%

0.00144

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2018-19332

CVSS3: 8.8

nvd

около 7 лет назад

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.

EPSS

Процентиль: 35%

0.00144

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-352