An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.Referenceshttps://kingflyme.blogspot.com/2018/11/the-poc-of-s-cmscsrf.html
