HelpDEZk Cross-Site Request Forgery Vulnerability (CNVD-2017-04611)
HelpDEZk is a suite of PHP-based software for managing requests, events. A cross-site request forgery vulnerability exists in admin/home/logos/ in HelpDEZk. Allows a remote attacker to construct a malicious URI and trick a user into parsing it, which could perform a malicious action in the contex...