Entreprise d'experts en Sécurité Informatique : Audits et conseils en cybersécurité
Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com


CVE-2018-19332

Description

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.

POC

Reference

- https://kingflyme.blogspot.com/2018/11/the-poc-of-s-cmscsrf.html

Github

No PoCs found on GitHub currently.