An issue exists in PbootCMS v1.0.7. Cross-site request forgery (CSRF) vulnerability in apps/admin/controller/system/RoleController.php allows remote malicious users to add administrator accounts via admin.php/role/add.html.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pbootcms pbootcms 1.0.7 |