An issue was discovered in YxtCMF 3.1. RbacController.class.php has CSRF, as demonstrated by modifying an administrator account via...
8.8CVSS
7.4AI Score
0.001EPSS
An issue was discovered in YxtCMF 3.1. SQL Injection exists in ShitiController.class.php via the ids array parameter to...
9.8CVSS
8.7AI Score
0.002EPSS