RSS   Vulnerabilities for 'Ogma cms'   RSS

2018-09-02
 
CVE-2018-16380

CWE-352
 

 
An issue was discovered in Ogma CMS 0.4 Beta. There is a CSRF vulnerability in users.php?action=createnew that can add an admin account.

 
 
CVE-2018-16379

CWE-79
 

 
Ogma CMS 0.4 Beta has XSS via the "Footer Text footer" field on the "Theme/Theme Options" screen.

 


Copyright 2024, cxsecurity.com

 

Back to Top