High severity8.8NVD Advisory· Published Jun 22, 2021· Updated Jun 17, 2026
CVE-2020-18648
CVE-2020-18648
Description
Cross Site Request Forgery (CSRF) in JuQingCMS v1.0 allows remote attackers to gain local privileges via the component "JuQingCMS_v1.0/admin/index.php?c=administrator&a=add".
Affected products
3- JuQingCMS/JuQingCMSdescription
Patches
Vulnerability mechanics
References
2- github.com/GodEpic/JuQingCMS/issues/1nvdExploitThird Party Advisory
- github.com/PearlyNautilus/Security-Code-Review/issues/7nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.