RSS   Vulnerabilities for 'Aspcms'   RSS

2018-08-26
 
CVE-2018-15888

CWE-20
 

 
An issue was discovered in ASPCMS 2.5.6. When registering ordinary users in the addUser function of the /member/reg.asp page, they can be registered with the super administrators GroupID directly.

 


Copyright 2021, cxsecurity.com

 

Back to Top