CVE-2020-20514
Published
CVSS v3
8.1
HIGH
CVSS v2
4.9
MEDIUM
Affected
1
PROJECT
Description
A Cross-Site Request Forgery (CSRF) in Maccms v10 via admin.php/admin/admin/del/ids/<id>.html allows authenticated attackers to delete all users.
苹果CMS v10 · MacCMS v10 — 开源内容管理系统:视频 / 分集剧情 / 文章 / 漫画 / 图片 / 网址导航. Open-source PHP CMS for video, articles, manga, images & site navigation.
GitHub