The text was updated successfully, but these errors were encountered:
anquanfuwu
changed the title
CSRF vulnerability can be added to administrator account.
/sikcms/admin.php?m=Admin&c=Users&a=userAdd create in sikcms-v1.1 allows CSRF to add a background administrator account
Nov 9, 2018
When the administrator lands, open it.
<script>history.pushState('', '', '/')</script>exp.html:
The text was updated successfully, but these errors were encountered: