CVE-2022-45276
9.8CRITICALAn issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
Published: 11/23/2022Updated: 4/25/2025
Description
An issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
AI AnalysisPowered by AI
Affected Products
eyunjingyjcms
1.0.9
References
- https://github.com/Zoe0427/YJCMSExploitThird Party Advisory
- https://github.com/Zoe0427/YJCMSExploitThird Party Advisory