​# Affected software: phpwcms # Type of vulnerability:csrf # URL:http://www.opensourcecms.com/demo/2/54/phpwcms # Discovered by: provensec # Website: provensec.com #version:1.5.4 # Proof of concept no csrf protections were used on directory creation page