2 matches found
WUZHI CMS 4.1.0 - Add User Account Cross-Site Request Forgery Vulnerability
Exploit for php platform in category web applications Exploit Title: WUZHI CMS 4.1.0 CSRF vulnerability add user account Exploit Author: taoge Vendor Homepage: https://github.com/wuzhicms/wuzhicms Software Link: https://github.com/wuzhicms/wuzhicms Version: 4.1.0 CVE : CVE-2018-9927 An issue was...
CVE-2018-9927
CVE-2018-9927 affects WUZHI CMS 4.1.0. A CSRF vulnerability enables an attacker to add a new user account by triggering a request to index.php?m=member&f=index&v=add after the administrator is logged in. Multiple connected sources (exploit-db, packetstorm, CVE listings) describe the same vector a...