2018-04-19 08:00:00
mitre
PUBLISHED
An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add an admin account via /index.php/admin/admin_manage/add.html.