CVE-2022-45276
9.8CRITICALAn issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
Veröffentlicht: 11/23/2022Aktualisiert: 4/25/2025
Beschreibung
An issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
KI-AnalyseKI-gestützt
Betroffene Produkte
eyunjingyjcms
1.0.9
Referenzen
- https://github.com/Zoe0427/YJCMSExploitThird Party Advisory
- https://github.com/Zoe0427/YJCMSExploitThird Party Advisory