3 matches found
CVE-2020-23595
Cross Site Request Forgery CSRF vulnerability in yzmcms version 5.6, allows remote attackers to escalate privileges and gain sensitive information sitemodel/add.html endpoint...
PT-2023-11651 · Yzmcms · Yzmcms
Name of the Vulnerable Software and Affected Versions: yzmcms version 5.6 Description: The issue allows remote attackers to escalate privileges and gain sensitive information. This is achieved through a Cross Site Request Forgery CSRF vulnerability, specifically at the "sitemodel/add.html"...
Yzmcms 跨站请求伪造漏洞
Yzmcms is Yzmcms a set of open source CMS Content Management System. yzmcms 5.6 version of the cross-site request forgery vulnerability , the vulnerability stems from the program does not adequately verify whether the request comes from a trusted user , an attacker can use this vulnerability to...