Damicms: >> Damicms >> 6.0.6 Security Vulnerabilities
Cross Site Request Forgery (CSRF) vulnerability exists in DamiCMS v6.0.6 that can add an admin account via admin.php?s=/Admin/doadd.
CVSS Score
8.0
EPSS Score
0.001
Published
2021-08-12
Cross Site Scripting (XSS) vulnerability exists in DamiCMS v6.0.6 via the title parameter in the doadd function in LabelAction.class.php.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-08-12