# Exploit Title: Msvod v10 has a CSRF vulnerability to change user information
# Date: 2019-04-14
# Exploit Author: ax8
# Vendor Homepage: githubcom/Li-Siyuan
# Software Link: wwwmsvodxcom/
# Version: v10
# CVE : CVE-2019-11375
Msvod v10 has a CSRF vulnerability to change user information via the admin/member/edithtml URI
...