CVE-2018-19545

CVE-2018-19545

EPSS 0.5%

JEECMS 9.3 has CSRF via the api/admin/role/save URI to add a user.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/toiron/setest/blob/c72808234498ade31990785d11ee2734738068c4/jeecmsaddusertest.html