CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Yzncms: >> Yzncms >> 1.1.0 Security Vulnerabilities

CVE-2023-37131

A Cross-Site Request Forgery (CSRF) in the component /public/admin/profile/update.html of YznCMS v1.1.0 allows attackers to arbitrarily change the Administrator password via a crafted POST request.

CVSS Score

6.5

EPSS Score

0.001

Published

2023-07-06

Page 1

Vulnerabilities

Vulnerable Software

Yzncms: >> Yzncms >> 1.1.0 Security Vulnerabilities

Products

Pricing

Contact Us