CVE-2022-27340

Published: 2022-04-22T20:15Z

Last Modified: 2024-11-21T06:55Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

MCMS v5.2.7 contains a Cross-Site Request Forgery (CSRF) via /role/saveOrUpdateRole.do. This vulnerability allows attackers to escalate privileges and modify data. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt