← back
CVE-2018-9092

CVE-2018-9092

EPSS 2.5%
There is a CSRF vulnerability in mc-admin/conf.php in MiniCMS 1.10 that can change the administrator account password.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/44362/unverifiedexploitdbwww.exploit-db.com/exploits/44362unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/bg5sbk/MiniCMS/issues/14https://www.exploit-db.com/exploits/44362/