MetInfo Cross-Site Request Forgery Vulnerability (CNVD-2018-14101)

MetInfo is a content management system CMS developed using PHP and Mysql by China Mito Information Technology Ltd. A cross-site request forgery vulnerability exists in MetInfo version 6.0.0. The vulnerability can be exploited by a remote attacker to add a user account via the doaddsave operation...