CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 3CVE-2018-9926 – WUZHI CMS 4.1.0 - Cross-Site Request Forgery (Add Admin)
https://notcve.org/view.php?id=CVE-2018-9926
An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add an admin account via index.php?m=core&f=power&v=add. Se ha descubierto un problema en WUZHI CMS 4.1.0. Hay una vulnerabilidad de Cross-Site Request Forgery (CSRF) que puede añadir una cuenta admin mediante index.php? • https://www.exploit-db.com/exploits/44439 http://www.iwantacve.cn/index.php/archives/6 https://github.com/wuzhicms/wuzhicms/issues/128 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9927 – Wuzhi CMS 4.1.0 Add User Cross Site Request Forgery
https://notcve.org/view.php?id=CVE-2018-9927
An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add a user account via index.php?m=member&f=index&v=add. Se ha descubierto un problema en WUZHI CMS 4.1.0. Hay una vulnerabilidad de Cross-Site Request Forgery (CSRF) que puede añadir una cuenta de usuario mediante index.php? • http://www.iwantacve.cn/index.php/archives/7 https://github.com/wuzhicms/wuzhicms/issues/128 • CWE-352: Cross-Site Request Forgery (CSRF) •