MingSoft MCMS 跨站请求伪造漏洞
MingSoft MCMS is a J2ee system from MingSoft, a Chinese company. MingSoft MCMS version 5.2.7 is vulnerable to cross-site request forgery. An attacker can use this vulnerability to add an administrator account via ms/basic/manager/save.do...