Medium severity6.5OSV Advisory· Published Nov 15, 2018· Updated Jun 17, 2026
CVE-2018-19291
CVE-2018-19291
Description
An issue was discovered in DiliCMS 2.4.0. There is a CSRF vulnerability that can delete a user or group via an admin/index.php/user/del/1 or admin/index.php/role/del/2 URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/chekun/DiliCMS/issues/60nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.