CSRF Vulnerability Allows Unauthorized Creation of Super Administrator Account in DOYO CMS

CSRF Vulnerability Allows Unauthorized Creation of Super Administrator Account in DOYO CMS

CVE-2019-7569 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An issue was discovered in DOYO (aka doyocms) 2.3(20140425 update). There is a CSRF vulnerability that can add a super administrator account via admin.php?c=a_adminuser&a=add&run=1.

Learn more about our Cms Pen Testing.