EyouCMS v1.5.8 has a vulnerability, Cross-site request forgery(CSRF)

version：V1.5.8-UTF8-SP1
![image](https://user-images.githubusercontent.com/60609675/179399541-843e2a44-61d4-47b1-a174-97e975e03452.png)
In the background, column management function and add.
![image](https://user-images.githubusercontent.com/60609675/179399615-1abe143b-0165-43f6-8738-7d16c06c1637.png)
Add test data and capture packets.
![image](https://user-images.githubusercontent.com/60609675/179399634-59449baa-e24e-4d7a-84e5-9ca0293f7e36.png)
![image](https://user-images.githubusercontent.com/60609675/179399670-c697287e-cb05-410c-8521-4f4e84783ff0.png)
use CSRF poc,and drop the packets.
![image](https://user-images.githubusercontent.com/60609675/179399733-a6562ba4-8d4a-441d-8637-fe7f3a45e3fd.png)
dorp the packets and submit.
![image](https://user-images.githubusercontent.com/60609675/179399776-e4475f20-9970-476b-9ac4-16d9b6436654.png)
![image](https://user-images.githubusercontent.com/60609675/179399794-2b8dc544-d6d7-43b5-b957-2e65bf0be254.png)
See test added.
![image](https://user-images.githubusercontent.com/60609675/179399839-db85f945-909f-4282-a965-b71d70104902.png)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

EyouCMS v1.5.8 has a vulnerability, Cross-site request forgery(CSRF) #26

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development