VYPR
High severity8.8NVD Advisory· Published Apr 17, 2018· Updated Jun 17, 2026

CVE-2018-10185

CVE-2018-10185

Description

An issue was discovered in TuziCMS v2.0.6. There is a CSRF vulnerability that can add an admin account, as demonstrated by a history.pushState call.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.