Easy2Pilot Cross-Site Request Forgery Vulnerability in User Account Creation

A cross-site request forgery (CSRF) vulnerability has been identified in Easy2Pilot version 7. This vulnerability allows attackers to add unauthorized user accounts by deceiving authenticated administrators into visiting maliciously crafted pages. Exploitation involves sending POST requests to the admin.php?action=add_user endpoint, including username and password parameters to create new administrative accounts without the consent of the user.

Impact

Exploitation of this vulnerability allows for the unauthorized creation of administrative user accounts.

Reproduction

To reproduce this vulnerability, an attacker must create a malicious HTML form that targets the admin.php?action=add_user endpoint. This form should include POST request parameters for username and password. Once the form is prepared, it can be hosted in a way that tricks an authenticated administrator into visiting the page, such as through phishing or social engineering tactics.