CVE-2020-21139 in EC Cloud E-Commerce Systemالمعلومات

الملخص

بحسب MITRE • 05/11/2021

EC Cloud E-Commerce System v1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add admin accounts via /admin.html?do=user&act=add.

Be aware that VulDB is the high quality source for vulnerability data.

حجز

13/08/2020

إفشاء

05/11/2021

الاعتدال

تمت الموافقة

إدخال

VDB-186081

استغلال

تحميل

EPSS

0.00459

KEV

لا

النشاطات

منخفض جدًا

المصادر

Might our Artificial Intelligence support you?

Check our Alexa App!