CVE-2020-23595

2023-08-1100:00:00

mitre

www.cve.org

yzmcms

csrf

vulnerability

remote

privilege escalation

sitemodel/add.html

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.8%

JSON

Cross Site Request Forgery (CSRF) vulnerability in yzmcms version 5.6, allows remote attackers to escalate privileges and gain sensitive information sitemodel/add.html endpoint.

References

github.com/yzmcms/yzmcms/issues/47