Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.8
CVSSv3

CVE-2018-12739

Published: 05/07/2018 Updated: 27/08/2018
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 685
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Beescms

Vulnerability Summary

In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to CVE-2018-10266.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

beescms beescms 4.0

Exploits

Exploit DB: BEESCMS 4.0 - Cross-Site Request Forgery (Add Admin)
# Exploit Title: A CSRF vulnerability exists in BEESCMS_V40: The administrator can be added arbitrarily # Date: 2018-06-25 # Exploit Author: bay0net # Vendor Homepage: wwwcnblogscom/v1vvwv/p/9226389html # Software Link: wwwbeescmscom/ # Version: BEESCMS - V40 # CVE : CVE-2018-12739 A CSRF vulnerability exists in BEESCMS_V40 ...
Exploit DB: BEESCMS 4.0 Cross Site Request Forgery
BEESCMS version 40 suffers from an add administrator cross site request forgery vulnerability ...

References

CWE-352https://www.exploit-db.com/exploits/44952/https://www.cnblogs.com/v1vvwv/p/9226389.htmlhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/44952/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook