CVE-2022-41475 Information

Description

RPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add an administrator account.

Reference

https://github.com/ralap-z/rpcms/issues/2