CVE-2018-5969

CVE: CVE-2018-5969
Published: 2018-01-24T10:29Z
Vendor: photography_cms_project
Products: photography_cms
Versions: 1.0,
Description Language: en
Description: Cross Site Request Forgery (CSRF) exists in Photography CMS 1.0 via clients/resources/ajax/ajax_new_admin.php, as demonstrated by adding an admin account.
References:
https://www.exploit-db.com/exploits/43867/