2 matches found
Cross site request forgery (csrf)
An cross site request forgery CSRF vulnerability discovered in Jymusic v2.0.0.,that allows attackers to execute arbitrary code via /admin.php?s=/addons/config.html&id=6 to modify payment information...
CVE-2020-18416
Affected software/component: Jymusic v2.0.0. Vulnerability type: Cross-Site Request Forgery (CSRF). Root cause / impact: CSRF allows an attacker to trigger arbitrary code execution by targeting the endpoint "/admin.php?s=/addons/config.html&id=6", enabling modification of payment information. The...