exploitDog

GHSA-72w5-pmm6-jwhp

Опубликовано: 24 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password.

An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password.

Ссылки

EPSS

Процентиль: 28%

0.00098

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2021-43737

CVSS3: 6.5

nvd

почти 4 года назад

An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password.

EPSS

Процентиль: 28%

0.00098

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-352