CSRF Vulnerability in SRCMS 3.0.0 Allows Unauthorized Account Modification

CSRF Vulnerability in SRCMS 3.0.0 Allows Unauthorized Account Modification

CVE-2018-19318 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=manager&a=update to change the username and password of the super administrator account.

Learn more about our Cms Pen Testing.