CVE-2020-18326

Published
View on NVD ↗
CVSS v3
8.8
HIGH
CVSS v2
6.8
MEDIUM
Affected
1
PROJECT

Description

Cross Site Request Forgery (CSRF) vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user.

hamm0nz/CVE-2020-18326
hamm0nz/CVE-2020-18326
Exploit PoC for CVE-2020-18326
GitHubGitHub