Shodan
Vulnerabilities
Vulnerable Software
Lfdycms:  >> Lfcms  Security Vulnerabilities
CVE-2018-12603
Cross-site request forgery (CSRF) vulnerability in admin.php in LFCMS 3.7.0 allows remote attackers to hijack the authentication of unspecified users for requests that add administrator users via the s parameter, a related issue to CVE-2018-12114.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-06-25
CVE-2018-12602
A CSRF vulnerability exists in LFCMS 3.7.0: users can be added arbitrarily.
CVSS Score
8.8
EPSS Score
0.003
Published
2018-06-25


Products
Pricing
Contact Us

Shodan ® - All rights reserved