74CMS v5.0.1 has a CSRF vulnerability to add a new admin user via the index.php?m=Admin&c=admin&a=add URI.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/152603/74CMS-5.0.1-Cross-Site-Request-Forgery.html | Exploit Third Party Advisory VDB Entry |
http://www.iwantacve.cn/index.php/archives/203/ | Exploit Third Party Advisory |
https://www.exploit-db.com/exploits/46738/ | Exploit Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-04-20T14:35:05
Updated: 2019-04-24T01:06:02
Reserved: 2019-04-20T00:00:00
Link: CVE-2019-11374
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-04-20T15:29:00.683
Modified: 2019-04-26T14:50:35.547
Link: CVE-2019-11374
JSON object: View
Redhat Information
No data.
CWE