ModStartCMS issues

ModStartCMS V4.6.0 has a vulnerability, Cross-site request forgery(CSRF)

4

Build ModStartCMSv4.6.0 locally Background, background permissions -> administrator -> add ![image](https://user-images.githubusercontent.com/56543516/186383826-46abeeb4-426d-4a41-b286-618908c61b41.png) Click to add a user test ![image](https://user-images.githubusercontent.com/56543516/186384208-bd11b287-0d2e-4833-af26-2fec9681a174.png) packet capture ![image](https://user-images.githubusercontent.com/56543516/186391707-e8b730d7-3526-45ae-bd12-37a3e74aa1f8.png) send csrf poc ![image](https://user-images.githubusercontent.com/56543516/186391984-993dcc8b-8b87-4938-9b26-b2fed15e7661.png) ![image](https://user-images.githubusercontent.com/56543516/186392554-097634a4-b7aa-4181-b4df-9111b75c18ed.png) ![image](https://user-images.githubusercontent.com/56543516/186392049-88ec54d8-8c09-47e4-af66-853884563d1a.png) Click to send，refresh...

Rookie-is

bug

How to get in touch regarding a security concern

Hello 👋 I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@scgajge12) has found a potential issue, which I would be eager to share with...

psmoros

使用docker部署，访问不了

1

![image](https://github.com/modstart/ModStartCMS/assets/12457033/9bab386b-0895-4125-afc5-152c29baad52) ![image](https://github.com/modstart/ModStartCMS/assets/12457033/d983110e-3c90-4dae-ba5c-55b92031b6bb)

magicwen666

ModStartCMS
ModStartCMS copied to clipboard

Metadata

ModStartCMS V4.6.0 has a vulnerability, Cross-site request forgery(CSRF)

How to get in touch regarding a security concern

使用docker部署，访问不了

← Metadata

Owner

Metadata

ModStartCMS ModStartCMS copied to clipboard

Metadata

ModStartCMS V4.6.0 has a vulnerability, Cross-site request forgery(CSRF)

How to get in touch regarding a security concern

使用docker部署，访问不了

← Metadata

Owner

Metadata

ModStartCMS
ModStartCMS copied to clipboard