A cross-site request forgery (CSRF) in KiteCMS V1.1 allows attackers to arbitrarily add an administrator account.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-20671
Reference (s):
- https://github.com/Kitesky/KiteCMS/issues/3
A cross-site request forgery (CSRF) in KiteCMS V1.1 allows attackers to arbitrarily add an administrator account.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-20671
Reference (s):