MidnightBSD

Advisories for mcms_project

CVE-2018-17366 MEDIUM

An issue was discovered in MCMS 4.6.5. There is a CSRF vulnerability that can add an administrator account via ms/basic/manager/save.do.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcms_project mcms 4.6.5