CVE-2020-36065 Information

Description

Cross Site Request Forgery (CSRF) vulnerability in FlyCms 1.0 allows attackers to add arbitrary administrator accounts via system/admin/admin_save.

Reference

https://github.com/sunkaifei/FlyCms https://github.com/sunkaifei/FlyCms/issues/8