CVE-2020-37046 in Sistem Informasi Pengumuman Kelulusan Onlineinfo

Zusammenfassung

von MITRE • 31.01.2026

Sistem Informasi Pengumuman Kelulusan Online 1.0 contains a cross-site request forgery vulnerability that allows attackers to add unauthorized admin users through the tambahuser.php endpoint. Attackers can craft a malicious HTML form to submit admin credentials and create new administrative accounts without the victim's consent.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulnCheck

Reservieren

28.01.2026

Veröffentlichung

31.01.2026

Moderieren

akzeptiert

Eintrag

VDB-343539

CPE

bereit

CWE

CWE-352 (bestätigt)

Exploit

Download

CVSS

5.3 (CNA)

EPSS

0.00008

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-37046
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-37046
CVE Details	https://www.cvedetails.com/cve/CVE-2020-37046/

◂ Zurück Übersicht Weiter ▸

Do you need the next level of professionalism?

Upgrade your account now!