CyberSec.Space Logo
Back to CVE Browser

CVE-2018-17389

HIGH
8.8
CVSS Severity Score
EPSS Score0.0090%
EPSS Percentile1.20th
PublishedJun 19, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

CSRF exists in server.php in Live Call Support Application 1.5 for adding an admin account.

Affected Platforms (CPE)

πŸ“¦
Ranksol

Live Call Support

= 1.5

References & Advisories

πŸ”— https://www.exploit-db.com/author/?a=8844
πŸ”— https://www.exploit-db.com/exploits/46140
πŸ”— https://www.exploit-db.com/author/?a=8844
πŸ”— https://www.exploit-db.com/exploits/46140

Related Vulnerabilities

CVE-2019-124989.8

The WP Live Chat Support plugin before 8.0.33 for WordPress accepts certain REST API calls without invoking the wplc_api_permissio...

CVE-2018-010110.0

A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could ...

CVE-2018-666710.0

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remo...

CVE-2018-1051110.0

A vulnerability in Trend Micro Control Manager (versions 6.0 and 7.0) could allow an attacker to conduct a server-side request for...