2 matches found
CVE-2020-19951
A cross-site request forgery CSRF in /controller/pay.class.php of YzmCMS v5.5 allows attackers to access sensitive components of the application...
CVE-2020-19951
The CVE-2020-19951 entry concerns a CSRF vulnerability in YzmCMS v5.5, specifically in /controller/pay.class.php. The issue enables an attacker to access sensitive components of the application due to cross-site request forgery. Connected sources consistently reference the same vulnerability in Y...