CVE-2018-10249

baijiacms V3 has CSRF via index.php?mod=site&op=edituser&name=manager&do=user to add an administrator account. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt