CVE-2019-8347

BEESCMS 4.0 has a CSRF vulnerability to add arbitrary VIP accounts via the admin/admin_member.php?action=add&nav=add_web_user&admin_p_nav=user URI.

Link	Resource
https://github.com/source-trace/beescms/issues/4	Exploit Third Party Advisory

Configuration 1

cpe:2.3:a:beescms:beescms:4.0:*:*:*:*:*:*:*

---

Published : 2019-02-15 03:29

Updated : 2019-02-15 04:08

---

NVD link : CVE-2019-8347

Mitre link : CVE-2019-8347

No products.

CWE-352