Critical severity9.8NVD Advisory· Published Nov 12, 2018· Updated Jun 17, 2026
CVE-2018-19222
CVE-2018-19222
Description
An issue was discovered in LAOBANCMS 2.0. It allows a /install/mysql_hy.php?riqi=0&i=0 attack to reset the admin password, even if install.txt exists.
Affected products
1- Range: = 2.0
Patches
Vulnerability mechanics
References
1- github.com/AvaterXXX/laobanCMS/blob/master/1.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.