Autism_JH

CVE-2018-15844 EXPLOITDB HIGH text WORKING POC

DamiCMS 6.0.0 - Cross-Site Request Forgery via Admin Password Change

An issue was discovered in DamiCMS 6.0.0. There is an CSRF vulnerability that can revise the administrator account's password via /admin.php?s=/Admin/doedit.

CVSS 8.8

View Code