MCMS v5.2.7 contains a Cross-Site Request Forgery (CSRF) via /role/saveOrUpdateRole.do. This vulnerability allows malicious users to escalate privileges and modify data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mingsoft mcms 5.2.7 |