Description
Cross Site Request Forgery (CSRF) in Rukovoditel v2.8.3 allows attackers to create an admin user with an arbitrary credentials.
Remediation
References
Related Vulnerabilities
WordPress Resource Management Errors Vulnerability (CVE-2014-5266)
WordPress Plugin Admin Columns Cross-Site Scripting (4.3.1)
MySQL CVE-2013-5882 Vulnerability (CVE-2013-5882)
WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.5)
WordPress Plugin WP Statistics Multiple Cross-Site Scripting Vulnerabilities (12.0.4)