CVE-2018-7219

application/admin/controller/Admin.php in NoneCms 1.3.0 has CSRF, as demonstrated by changing an admin password or adding an account via a public/index.php/admin/admin/edit.html request.
References
Link Resource
http://foreversong.cn/archives/1081 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:5none:nonecms:1.3.0:*:*:*:*:*:*:*

Information

Published : 2018-02-19 02:29

Updated : 2018-03-14 06:24


NVD link : CVE-2018-7219

Mitre link : CVE-2018-7219

Products Affected
No products.
CWE