CSRF Vulnerability in PopojiCMS v2.0.1 via po-admin/route.php?mod=user&act=addnew URI

CSRF Vulnerability in PopojiCMS v2.0.1 via po-admin/route.php?mod=user&act=addnew URI

CVE-2019-9549 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An issue was discovered in PopojiCMS v2.0.1. It has CSRF via the po-admin/route.php?mod=user&act=addnew URI, as demonstrated by adding a level=1 account, a similar issue to CVE-2018-18935.

Learn more about our Cms Pen Testing.