CVE-2018-17389
CVE-2018-17389 describes a CSRF flaw in the Live Call Support Application version 1.5, specifically in server.php, that allows adding an admin account. The root cause is a Cross-Site Request Forgery vulnerability that can enable unauthorized admin account creation without user interaction beyond ...