CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-23631

Cross-site request forgery (CSRF) in admin/global/manage.php in WDJA CMS 1.5 allows remote attackers to conduct cross-site scripting (XSS) attacks via the tongji parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/shadoweb/wdja/issues/11
https://www.cnblogs.com/wayne-tao/p/13110663.html
https://github.com/shadoweb/wdja/issues/11
https://www.cnblogs.com/wayne-tao/p/13110663.html

Products affected by CVE-2020-23631

Wdja » Wdja Cms » Version: 1.5

cpe:2.3:a:wdja:wdja_cms:1.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-23631

Products

Pricing

Contact Us