CSRF Vulnerability in JEECMS 9.3 Allows Unauthorized News Addition via api/admin/content/save URI

CSRF Vulnerability in JEECMS 9.3 Allows Unauthorized News Addition via api/admin/content/save URI

CVE-2018-19544 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

JEECMS 9.3 has CSRF via the api/admin/content/save URI to add news.

Learn more about our Api Penetration Testing.