CSRF Vulnerability in UKcms v1.1.10 Allows Unauthorized Addition of Admin User

CSRF Vulnerability in UKcms v1.1.10 Allows Unauthorized Addition of Admin User

CVE-2019-10888 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A CSRF Issue that can add an admin user was discovered in UKcms v1.1.10 via admin.php/admin/role/add.html.

Learn more about our Cms Pen Testing.