CVE-2020-28872
Monitorr v1.7.6m suffers an authorization bypass in Monitorr/assets/config/_installation/_register.php that lets an unauthenticated user create valid credentials. Several sources corroborate an auth-bypass leading to credential creation, with public references to exploits and tools (e.g., exploit...