cve/2012/CVE-2012-4877.md

CVE-2012-4877

Description

Cross-site request forgery (CSRF) vulnerability in controlcenter.php in FlatnuX CMS 2011 08.09.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that add user accounts.

POC

Reference

• http://packetstormsecurity.org/files/111473/Flatnux-CMS-2011-08.09.2-CSRF-XSS-Directory-Traversal.html
• http://www.vulnerability-lab.com/get_content.php?id=487

Github

No PoCs found on GitHub currently.