Maccms 10 allows CSRF via admin.php/admin/admin/info.html to add user accounts.Referenceshttps://www.exploit-db.com/exploits/44887/http://www.iwantacve.cn/index.php/archives/42/https://www.cnblogs.com/v1vvwv/p/9168309.html
