CVE-2018-16431 admin 6년 ago CVE-2018-16431 admin/admin/adminsave.html in YFCMF v3.0 allows CSRF to add an administrator account. Source: CVE-2018-16431