Doufox is an open source PHP and MySQL-based powerful CMS website builder. version 0.0.4 of Doufox is vulnerable to cross-site request forgery, which stems from a WEB application that does not sufficiently validate that the request is from a trusted user. An attacker could use this vulnerability to add a system administrator account.
CPE | Name | Operator | Version |
---|---|---|---|
doufox doufox | eq | 0.0.4 |