YznCMS 跨站请求伪造漏洞
YznCMS is a backend development framework. A cross-site request forgery vulnerability exists in YznCMS v1.1.0, which stems from insufficiently verifying that a request comes from a trusted user in /public/admin/profile/update.html. An attacker could exploit this vulnerability by constructing a PO...