cvedb.io
CVE-2018-7219
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2018-02-19T14:29:00.803 · Last modified 2026-06-17T02:02:49.003

Summary

application/admin/controller/Admin.php in NoneCms 1.3.0 has CSRF, as demonstrated by changing an admin password or adding an account via a public/index.php/admin/admin/edit.html request.

Affected products

5none — nonecms

Does this affect you?

Add your gear to cvedb and we'll alert you only when 5none ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.