idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userLevel_deal.php?mudi=delReferenceshttps://github.com/pangchunyuhack/cms/blob/main/59/csrf.md