CVE-2020-24130

2021-08-2019:27:28

mitre

www.cve.org

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.4%

JSON

A cross site request forgery (CSRF) vulnerability in the configure.html component of Ponzu 0.11.0 allows attackers to change user and administrator credentials, and add or delete administrator accounts.

References

github.com/ponzu-cms/ponzu/issues/352