CVE-2020-23362
CVE-2020-23362 affects Shop CMS YerShop (all versions). Affected component is the insecure permissions around the cover_id parameter that allows a remote attacker to escalate privileges. The vulnerability is described with a CVSS v3.1 base score of 7.1 (HIGH), with network attack vector, low atta...