CVE-2018-20188 - OpenCVE

FUEL CMS 1.4.3 has CSRF via users/create/ to add an administrator account.

No CVSS v3.1

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors	Products
Thedaylightstudio	Fuel Cms

Configuration 1 [-]

cpe:2.3:a:thedaylightstudio:fuel_cms:1.4.3:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/m3lon/CVE/blob/master/CSRF/FUELCMS%20CSRF.md	Exploit Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-10-03T16:22:06

Updated: 2022-10-03T16:22:06

Reserved: 2022-10-03T00:00:00

Link: CVE-2018-20188

JSON object: View

NVD Information

Status : Analyzed

Published: 2018-12-17T19:29:04.187

Modified: 2019-01-07T17:37:46.327

Link: CVE-2018-20188

JSON object: View

Redhat Information

No data.

CWE