CVE-2020-20514

magicblack/maccms10

on github

Published

September 24, 2021

Severity

CVSS v3:

8.1 HIGH

CVSS v2:

4.9 MEDIUM

Description

A Cross-Site Request Forgery (CSRF) in Maccms v10 via admin.php/admin/admin/del/ids/<id>.html allows authenticated attackers to delete all users.

References

https://github.com/magicblack/maccms10/issues/76

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:maccms:maccms:10.0:::::::*	n/a	n/a	10.0

External Links

NVD - CVE-2020-20514