CVE-2020-37046 in Sistem Informasi Pengumuman Kelulusan Online정보

요약

\~에 의해 MITRE • 2026. 01. 31.

Sistem Informasi Pengumuman Kelulusan Online 1.0 contains a cross-site request forgery vulnerability that allows attackers to add unauthorized admin users through the tambahuser.php endpoint. Attackers can craft a malicious HTML form to submit admin credentials and create new administrative accounts without the victim's consent.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

VulnCheck

예약하다

2026. 01. 28.

공개

2026. 01. 31.

모더레이션

수락

항목

VDB-343539

CPE

준비됨

CWE

CWE-352 (확인됨)

익스플로잇

다운로드

CVSS

5.3 (CNA)

EPSS

0.00008

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-37046
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-37046
CVE Details	https://www.cvedetails.com/cve/CVE-2020-37046/

◂ 이전 개요 다음 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!