CVE-2023-1937
CVE-2023-1937 affects zhenfeng13 My-Blog. The issue is in an unknown function of the file /admin/configurations/userInfo, where manipulating parameters yourAvatar, yourName, or yourEmail leads to cross-site request forgery. It can be exploited remotely and a public exploit exists. The project use...