VYPR
Unrated severityNVD Advisory· Published Sep 10, 2020· Updated Aug 4, 2024

CVE-2020-24739

CVE-2020-24739

Description

A CSRF vulnerability was found in iCMS v7.0.0 in the background deletion administrator account. When missing the CSRF_TOKEN and can still request normally, all administrators except the initial administrator will be deleted.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.