exploitDog

CVE-2020-37144

Опубликовано: 05 фев. 2026

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

Exagate SYSGuard 6001 contains a cross-site request forgery vulnerability that allows attackers to create unauthorized admin accounts through a crafted HTML form. Attackers can trick users into submitting a malicious form to /kulyon.php that adds a new user with administrative privileges without the victim's consent.

Ссылки

EPSS

Процентиль: 2%

0.00015

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-gm75-xf4f-5gc3

CVSS3: 5.3

github

2 дня назад

Exagate SYSGuard 6001 contains a cross-site request forgery vulnerability that allows attackers to create unauthorized admin accounts through a crafted HTML form. Attackers can trick users into submitting a malicious form to /kulyon.php that adds a new user with administrative privileges without the victim's consent.

EPSS

Процентиль: 2%

0.00015

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-352