FastAdmin V1.0.0.20190111_beta has a CSRF vulnerability to add a new admin user via the admin/auth/admin/add?dialog=1 URI.
References
Link | Resource |
---|---|
http://www.iwantacve.cn/index.php/archives/191/ | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2019-04-11 02:29
Updated : 2024-02-28 17:08
NVD link : CVE-2019-11077
Mitre link : CVE-2019-11077
CVE.ORG link : CVE-2019-11077
JSON object : View
Products Affected
fastadmin
- fastadmin
CWE
CWE-352
Cross-Site Request Forgery (CSRF)