Tuzicms - Tuzicms CVE

Filtered by vendor Tuzicms Subscribe

Filtered by product Tuzicms

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-16658	1 Tuzicms	1 Tuzicms	2019-09-23	6.8 MEDIUM	8.8 HIGH
TuziCMS 2.0.6 has index.php/manage/notice/do_add CSRF.
CVE-2019-16659	1 Tuzicms	1 Tuzicms	2019-09-23	6.8 MEDIUM	8.8 HIGH
TuziCMS 2.0.6 has index.php/manage/link/do_add CSRF.
CVE-2018-10185	1 Tuzicms	1 Tuzicms	2018-05-21	6.8 MEDIUM	8.8 HIGH
An issue was discovered in TuziCMS v2.0.6. There is a CSRF vulnerability that can add an admin account, as demonstrated by a history.pushState call.

Vulnerabilities (CVE)