RSS   Vulnerabilities for 'Akcms'   RSS

2018-06-19
 
CVE-2018-12583

CWE-352
 

 
An issue was discovered in AKCMS 6.1. CSRF can delete an article via an admincp deleteitem action to index.php.

 
 
CVE-2018-12582

CWE-352
 

 
An issue was discovered in AKCMS 6.1. CSRF can add an admin account via a /index.php?file=account&action=manageaccounts&job=newaccount URI.

 


Copyright 2018, cxsecurity.com

 

Back to Top