Medium severity6.5NVD Advisory· Published May 6, 2021· Updated Jun 17, 2026
CVE-2020-18889
CVE-2020-18889
Description
Cross Site Request Forgery (CSRF) vulnerability in puppyCMS v5.1 that can change the admin's password via /admin/settings.php.
Affected products
3- puppyCMS/puppyCMSdescription
Patches
Vulnerability mechanics
References
1- github.com/choregus/puppyCMS/issues/13nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.