Vulnerability CVE-2018-17037


Published: 2018-09-14

Description:
user/editpost.php in UCMS 1.4.6 mishandles levels, which allows escalation from the normal user level of 1 to the superuser level of 3.

 References:
https://github.com/blackstar24/UCMS/blob/master/level.md

Copyright 2018, cxsecurity.com

 

Back to Top