24 matches found
Cross site request forgery (csrf)
TEMMOKU T1.09 Beta allows admin/user/add CSRF...
OneThink Cross-Site Request Forgery Vulnerability (CNVD-2018-14976)
Onethink is a ThinkPHP-based content management framework for web development . A cross-site request forgery vulnerability exists in the admin.php?s=/User/add.html page in OneThink version 1.1. A remote attacker can exploit this vulnerability to add users...
QuickAppsCMS Cross-Site Request Forgery Vulnerability
QuickAppsCMS is an open source content management system CMS developed using the MVC framework. A cross-site request forgery vulnerability exists in admin/user/manage/add in QuickAppsCMS version 2.0.0-beta2. A remote attacker can exploit this vulnerability to create an account with administrator...
Cross-Site Request Forgery Vulnerability in yiqicms
Yiqicms is a SEO-based marketing enterprise website system, using PHP+Mysql open source building system. yiqicms background add admin admin/user-add.php at the existence of CSRF vulnerability , through the implantation of csrf form way , you can add the administrator account...