CVE-2022-36577
CVE-2022-36577 affects jizhicms v2.3.1 with a CSRF vulnerability allowing an attacker to add an administrator. The NVD entry assigns CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (base score 8.8). Impact is high across confidentiality, integrity, and availability. Connected sources corroborate a...