CVE ID:

CVE-2019-7737

Details:

A CSRF vulnerability was found in Verydows v2.0 that can add an admin account via index.php?m=backend&c=admin&a=add&step=submit.

References:

:https://github.com/Verytops/verydows/issues/10

ZeroDayLab Assigned Tags:

CROSS SITE SCRIPTING - What is Cross Site Scripting?