There is a CSRF vulnerability that can add administrator.

After the administrator logged in,open the poc page.
copy add.txt to add.html and let the administrator open the add.html
vulnerability location:/EmpireCMS-master/upload/e/admin/user/AddUser.php?enews=AddUser

Before modification

![default](https://user-images.githubusercontent.com/42108055/43988222-94aa3442-9d63-11e8-84a0-599f2e22dbb6.png)
![default](https://user-images.githubusercontent.com/42108055/43988260-2a60cd20-9d64-11e8-9ed5-a779d94d65a3.png)

After modification
![default](https://user-images.githubusercontent.com/42108055/43988264-3be956d4-9d64-11e8-9674-1200b66f3c15.png)

Payload location:
[add.txt](https://github.com/sbmzhcn/EmpireCMS/files/2279919/add.txt)




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

There is a CSRF vulnerability that can add administrator. #1

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

There is a CSRF vulnerability that can add administrator. #1

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions