Unrated severityNVD Advisory· Published Jul 8, 2021· Updated Aug 4, 2024
CVE-2020-20586
CVE-2020-20586
Description
A cross site request forgery (CSRF) vulnerability in the /xyhai.php?s=/Auth/editUser URI of XYHCMS V3.6 allows attackers to edit any information of the administrator such as the name, e-mail, and password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- XYHCMS/XYHCMSdescription
Patches
Vulnerability mechanics
References
3- www.xyhcms.com/Show/download/id/2/at/0.htmlmitrex_refsource_MISC
- xyhcms.commitrex_refsource_MISC
- github.com/0xyu/PHP_Learning/issues/4mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.