| 标题 | http://www.mrcms.cn/ mrcms 3.1.2 Cross-Site Request Forgery |
|---|
| 描述 | The admin/user/save.do interface of mrcms_v3.1.2 has a CSRF vulnerability, CSRF attacks can exploit the login status of users to perform malicious operations without the user's knowledge, resulting in serious consequences such as user information leakage, account tampering, or sensitive operations being accidentally triggered. |
|---|
| 来源 | ⚠️ https://github.com/bdkuzma/vuln/issues/8 |
|---|
| 用户 | baihekuz (UID 84516) |
|---|
| 提交 | 2025-04-22 11時49分 (11 月前) |
|---|
| 管理 | 2025-05-05 16時55分 (13 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 307428 [MRCMS 3.1.2 跨网站请求伪造] |
|---|
| 积分 | 19 |
|---|