CSRF Vulnerability in FastAdmin V1.0.0.20190111_beta Allows Unauthorized Addition of Admin User

CSRF Vulnerability in FastAdmin V1.0.0.20190111_beta Allows Unauthorized Addition of Admin User

CVE-2019-11077 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

FastAdmin V1.0.0.20190111_beta has a CSRF vulnerability to add a new admin user via the admin/auth/admin/add?dialog=1 URI.

Learn more about our User Device Pen Test.