https://www.junookyo.com/2012/05/whmcs-44-csrf-vulnerability-add-admin.html