Vulnerability CVE-2020-19964


Published: 2021-10-14

Description:
A Cross Site Request Forgery (CSRF) vulnerability was discovered in PHPMyWind 5.6 which allows attackers to create a new administrator account without authentication.

 References:
https://github.com/gaozhifeng/PHPMyWind
https://github.com/gaozhifeng/PHPMyWind/issues/9
http://phpmywind.com

Copyright 2021, cxsecurity.com

 

Back to Top