Share:

CVE-2020-20642 - Eyoucms Eyoucms

August 19, 2021

Critical 8.8

Cross Site Request Forgery (CSRF) vulnerability exists in EyouCMS 1.3.6 that can add an htm page to execute the js code via login.php?m=admin&c=Filemanager&a=newfile&lang=cn.

Affected software

Eyoucms Eyoucms

Reference links

https://github.com/eyoucms/eyoucms/issues/5

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.