traq vulnerabilities and exploits

6.8
CVSSv2
CVE-2018-20780

Traq 3.7.1 allows admin/users/new CSRF to create an admin account (aka group_id=1)....

7.5
CVSSv2
CVE-2018-20779

Traq 3.7.1 allows SQL Injection via a tickets?search= URI....