Cross site request forgery (csrf)

2023-06-2719:15:00

PRIOn knowledge base

www.prio-n.com

cross site request forgery

feifeicms

administrator accounts

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.5%

JSON

A Cross site request forgery (CSRF) vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert.

CPENameOperatorVersion
feifeicmseq4.1.190209

CPE	Name	Operator	Version
	feifeicms	eq	4.1.190209

References

github.com/GodEpic/Vulnerability-detection/blob/master/feifeicms/FeiFeiCMS_4.1_csrf.doc

github.com/GodEpic/Vulnerability-detection/blob/master/feifeicms/poc