RSS   Vulnerabilities for 'Umi.cms'   RSS

2014-03-11
 
CVE-2013-2754

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability in Umisoft UMI.CMS before 2.9 build 21905 allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts via a request to admin/users/add/user/do/.

 

 >>> Vendor: Umi-cms 2 Products
Umi cms
Umi.cms


Copyright 2024, cxsecurity.com

 

Back to Top