auraCMS 'user.php' Access Validation Vulnerability

auraCMS 'user.php' Access Validation Vulnerability

auraCMS is prone to an access-validation vulnerability that attackers can leverage to create unauthorized administrative user accounts.

Successful exploits will compromise the application and possibly the underlying computer.

auraCMS 2.2.1 is vulnerable; other versions may also be affected.