CVE-2018-18794 admin 5년 ago CVE-2018-18794 School Event Management System 1.0 allows CSRF via user/controller.php?action=edit. Source: CVE-2018-18794