Unspecified vulnerability in Plain Black WebGUI 7.4.0 through 7.4.17 allows remote authenticated users with Secondary Admin privileges to create Admin accounts, a different vulnerability than CVE-2006-0680.
https://exchange.xforce.ibmcloud.com/vulnerabilities/39041
http://www.plainblack.com/getwebgui/advisories/webgui-7_4_18-stable-released/
http://www.plainblack.com/bugs/tracker/secondary-admin-can-create-user-with-admin-privilege