CVE-2019-9549
CVE-2019-9549 affects PopojiCMS v2.0.1 with a CSRF via po-admin/route.php?mod=user&act=addnew that can enable creation of an unauthorized level-1 account. CVSSv2 base 6.8 (MEDIUM) and CVSSv3 base 8.8 (HIGH) are noted. No remediation details are provided in the connected documents; exploitation st...