Vulnerabilities > Srcms Project > Srcms > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-16 | CVE-2018-19319 | Cross-Site Request Forgery (CSRF) vulnerability in Srcms Project Srcms 3.0.0 SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges. | 6.5 |