In waimai Super Cms 20150505, there is a CSRF vulnerability that can change the configuration via admin.php?m=Config&a=add.Referenceshttps://github.com/caokang/waimai/issues/3
