CVE-2018-11003

An issue was discovered in YXcms 1.4.7. Cross-site request forgery (CSRF) vulnerability in protected/apps/admin/controller/adminController.php allows remote attackers to delete administrator accounts via index.php?r=admin/admin/admindel.
References
Configurations

Configuration 1

cpe:2.3:a:yxcms:yxcms:1.4.7:*:*:*:*:*:*:*

Information

Published : 2018-05-12 04:29

Updated : 2018-06-18 04:09


NVD link : CVE-2018-11003

Mitre link : CVE-2018-11003

Products Affected
No products.
CWE