Share:

CVE-2023-27234 - Jizhicms Jizhicms

March 15, 2023

Moderate 6.5

A Cross-Site Request Forgery (CSRF) in /Sys/index.html of Jizhicms v2.4.5 allows attackers to arbitrarily make configuration changes within the application.

Affected software

Jizhicms Jizhicms

Reference links

https://github.com/Cherry-toto/jizhicms/issues/85

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.