CVE-2022-43031
DedeCMS v6.1.9 is affected by a Cross-Site Request Forgery (CSRF) vulnerability that allows an attacker to arbitrarily add Administrator accounts and modify Admin passwords. The NVD entry (CVE-2022-43031) rates this as CVSS v3.1: 8.8 (High) with Network attack vector, no privileges required, user...