VYPR
Unrated severityNVD Advisory· Published Jul 8, 2021· Updated Aug 4, 2024

CVE-2020-20586

CVE-2020-20586

Description

A cross site request forgery (CSRF) vulnerability in the /xyhai.php?s=/Auth/editUser URI of XYHCMS V3.6 allows attackers to edit any information of the administrator such as the name, e-mail, and password.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • XYHCMS/XYHCMSdescription
  • Xyh/Xyhcmsllm-fuzzy
    Range: =3.6

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.