8.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.3%
An issue was discovered in XYHCMS 3.5. It has CSRF via an index.php?g=Manage&m=Rbac&a=addUser request, resulting in addition of an account with the administrator role.
github.com/gosea/xyhcms/issues/1