CVE-2020-18129

Severity CVSS v4.0:
Pending analysis
Type:
CWE-352 Cross-Site Request Forgery (CSRF)
Publication date:
22/10/2020
Last modified:
27/10/2020

Description

A CSRF vulnerability in Eyoucms v1.2.7 allows an attacker to add an admin account via login.php.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:eyoucms:eyoucms:1.2.7:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools