CVE-2019-8437
njiandan-cms through 2013-05-23 has index.php/admin/user_new CSRF to add an administrator.
8.8CVSS
8.6AI Score
0.001EPSS