CVE-2020-19964

Published October 14th, 2021

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

1

PROJECT

Description

A Cross Site Request Forgery (CSRF) vulnerability was discovered in PHPMyWind 5.6 which allows attackers to create a new administrator account without authentication.

gaozhifeng/PHPMyWind

PHPMyWind是一个品牌，一款基于PHP+MySQL开发符合W3C标准的建站引擎 © 2010 - 2017

GitHub

59