Wuzhi · Wuzhi Cms · CVE-2018-10248
Name of the Vulnerable Software and Affected Versions:
WUZHI CMS version 4.1.0
Description:
A CSRF issue allows deletion of any article via the "index.php?m=content&f=content&v=recycle delete" endpoint.
Recommendations:
For WUZHI CMS version 4.1.0, update to a newer version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.