Srcms Project CVE

Filtered by vendor Srcms Project Subscriptions

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2018-19318	1 Srcms Project	1 Srcms	2024-09-17	N/A
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=manager&a=update to change the username and password of the super administrator account.
CVE-2018-19319	1 Srcms Project	1 Srcms	2024-09-16	N/A
SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges.
CVE-2018-14068	1 Srcms Project	1 Srcms	2024-08-05	N/A
An issue was discovered in SRCMS V2.3.1. There is a CSRF vulnerability that can add an admin account via admin.php?m=Admin&c=manager&a=add.
CVE-2018-14069	1 Srcms Project	1 Srcms	2024-08-05	N/A
An issue was discovered in SRCMS V2.3.1. There is a CSRF vulnerability that can add a user account via admin.php?m=Admin&c=member&a=add.

Page 1 of 1.