An issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-11-23