CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-18416

An cross site request forgery (CSRF) vulnerability discovered in Jymusic v2.0.0.,that allows attackers to execute arbitrary code via /admin.php?s=/addons/config.html&id=6 to modify payment information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.2%

CVSS Severity

CVSS v3 Score 6.8

References

https://github.com/dtorp06/jymusic/issues/1
https://github.com/dtorp06/jymusic/issues/1

Products affected by CVE-2020-18416

Jyuu » Jymusic » Version: 2.0.0

cpe:2.3:a:jyuu:jymusic:2.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-18416

Products

Pricing

Contact Us