This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Umi-Cms First view 2014-03-11
Product Umi.Cms Last view 2014-03-11
Version 2.7.3 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:umi-cms:umi.cms

Activity : Overall

Related : CVE

  Date Alert Description
6.8 2014-03-11 CVE-2013-2754

Cross-site request forgery (CSRF) vulnerability in Umisoft UMI.CMS before 2.9 build 21905 allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts via a request to admin/users/add/user/do/.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-352 Cross-Site Request Forgery (CSRF)

ExploitDB Exploits

id Description
25449 UMI.CMS 2.9 - CSRF Vulnerability