First published: Thu Sep 09 2021(Updated: )
A cross-site request forgery (CSRF) in index.php/Dswjcms/User/tfAdd of Dswjcms 1.6.4 allows authenticated attackers to arbitrarily add administrator users.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Dswjcms Project Dswjcms | =1.6.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.