Vulnerabilities > Baijiacms Project > Baijiacms > 3.0

DATE CVE VULNERABILITY TITLE RISK
2018-04-20 CVE-2018-10249 Cross-Site Request Forgery (CSRF) vulnerability in Baijiacms Project Baijiacms 3.0
baijiacms V3 has CSRF via index.php?mod=site&op=edituser&name=manager&do=user to add an administrator account.
network
low complexity
baijiacms-project CWE-352
8.8
8.8
2018-04-19 CVE-2018-10219 Information Exposure vulnerability in Baijiacms Project Baijiacms 3.0
baijiacms V3 has physical path leakage via an index.php?mod=mobile&name=member&do=index request.
network
low complexity
baijiacms-project CWE-200
5.3
5.3