CVE-2018-14583

Publication date

2018-07-24 16:00:00

Family

mitre

State

PUBLISHED

Description

xyhai.php?s=/Auth/addUser in XYHCMS 3.5 allows CSRF to add a background administrator account.