CVE-2019-11077
FastAdmin V1.0.0.20190111_beta has a CSRF vulnerability that allows adding a new admin user via the URI admin/auth/admin/add?dialog=1. Root cause: CSRF protection missing/insufficient. CVSSv3.1 base score 8.8 (High), network vector, user interaction required; confidentiality, integrity, and avail...