CVE-2019-13370

Severity CVSS v4.0:
Pending analysis
Type:
CWE-352 Cross-Site Request Forgery (CSRF)
Publication date:
06/07/2019
Last modified:
16/02/2024

Description

index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ignitedcms:ignitedcms:*:*:*:*:*:*:*:* 2017-02-19 (including)


References to Advisories, Solutions, and Tools