Cross Site Request Forgery (CSRF) vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user.
References
Link | Resource |
---|---|
https://github.com/hamm0nz/CVE-2020-18326 | Exploit Third Party Advisory |
http://intelliants.com | Vendor Advisory |
http://subrion.com | Product |
Configurations
Information
Published : 2022-03-04 07:15
Updated : 2022-03-11 06:52
NVD link : CVE-2020-18326
Mitre link : CVE-2020-18326
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
intelliants
- subrion_cms