High severity8.8NVD Advisory· Published Aug 19, 2021· Updated Jun 17, 2026
CVE-2020-20642
CVE-2020-20642
Description
Cross Site Request Forgery (CSRF) vulnerability exists in EyouCMS 1.3.6 that can add an htm page to execute the js code via login.php?m=admin&c=Filemanager&a=newfile&lang=cn.
Affected products
2- EyouCMS/EyouCMSdescription
Patches
Vulnerability mechanics
References
1- github.com/eyoucms/eyoucms/issues/5nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.