WUZHI CMS Cross-Site Request Forgery Vulnerability (CNVD-2019-09137)
WUZHI CMS is five fingers WUZHI company based on PHP and MySQL open source content management system CMS. WUZHI CMS 4.1.0 exists cross-site request forgery vulnerability, an attacker can change the super administrator's username via index.php?m=core&f=panel&v=editinf to take advantage of this...