2 matches found
CVE-2020-24271
creationtimestamp| type| source ---|---|--- 2021-02-01 19:25:05+00:00| seen| https://t.me/cibsecurity/22891...
CVE-2020-24271
CVE-2020-24271 concerns a CSRF vulnerability in EasyCMS v1.6 that allows an attacker to add an administrator account by requesting index.php?s=/admin/rbacuser/insert/navTabId/rbacuser/callbackType/closeCurrent and submitting username and password. The issue arises from a cross-site request issue ...