CVE-2018-19319

Published November 16th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

4.3

MEDIUM

Affected

1

PROJECT

Description

SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges.

martinzhou2015/SRCMS-dev

SRCMS Dev Version

GitHub

10