Intrusion Prevention

MACCMS.V10.Admin.PHP.CSRF

Description

This indicates an attack attempt to exploit a Cross-Site Request Forgery Vulnerability in MACCMS.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. An attacker may exploit this to add an User on to the server in the context of an authorized user's session.

Affected Products

MACCMS Version 10

Impact

Privilege Escalation: Remote attackers can leverage their privileges on vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

CVE References

CVE-2018-12114

Other References

44887