wind-cyber/DamiCMS-v6.0.0-have-csrf-and-xss-Vulnerabilities-
GitHub
Releases0
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| 8.8 HIGH | 6.8 MEDIUM | ||
A vulnerability in /damicms-master/admin.php?s=/Article/doedit of DamiCMS v6.0 allows attackers to compromise and impersonate user accounts via obtaining a user's session cookie. | |||