CSRF Vulnerability in YzmCMS 3.8 Allows Unauthorized Admin Account Addition

CSRF Vulnerability in YzmCMS 3.8 Allows Unauthorized Admin Account Addition

CVE-2018-10223 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:P

An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add an admin account via /index.php/admin/admin_manage/add.html.

Learn more about our Cms Pen Testing.