|
Description: | | An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add a user account via index.php?m=member&f=index&v=add. |
|
Impact: | | An attacker can launch a cross-site request forgery in the context of the affected software. Arbitrary script transmitted from a user that the software trusts can be executed in a successful exploit attempt. |
|
Affected OS: | | Windows, Others |
|
Reference: | | http://www.iwantacve.cn/index.php/archives/7/ https://github.com/wuzhicms/wuzhicms/issues/128
|
|