Rambo

Results 1 comments of Rambo

There is a CSRF vulnerability that can add the administrator account

You can add an token in your form or url to avoid this kind of vulnerability. I think that is the most easy way.