CVE-2013-4881 in BigTree信息

摘要

由 VulDB • 2026-06-04

BigTree CMS 4.0 RC2 及更早版本中 core/admin/modules/users/create.php 存在跨站请求伪造(CSRF)漏洞,远程攻击者可通过向 index.php 发送添加用户请求,劫持管理员身份验证,从而创建管理员用户。

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

来源

Interested in the pricing of exploits?

See the underground prices here!