Lucene search
China National Vulnerability DatabaseCNVD-2021-88725HistoryNov 03, 2021 - 12:00 a.m.
AyaCMS Cross-Site Request Forgery Vulnerability
2021-11-0300:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
ayacms
csrf
vulnerability
password change
administrator
impact
php
open source
EPSS
0.001
Percentile
43.5%
AyaCMS is an extremely simple and free open source Php site building system. a cross-site request forgery vulnerability exists in AyaCMS, which stems from a lack of checking for cross-site request forgery in the softwareβs change of administrator password operation. An attacker could use this vulnerability to change the administrator password or other unspecified impact.
Related
prion
prion
Cross site request forgery (csrf)
2021-11-02 18:15:00
cvelist
cvelist
CVE-2020-23686
2021-11-02 17:45:09
cve
cve
CVE-2020-23686
2021-11-02 18:15:08
nvd
nvd
CVE-2020-23686
2021-11-02 18:15:08