2019-03-07 22:00:00
mitre
PUBLISHED
An issue was discovered in Cscms 4.1.0. There is an admin.php/pay CSRF vulnerability that can change the payment account to redirect funds.