CVE-2022-45276
9.8CRITICALAn issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
Publicado: 11/23/2022Actualizado: 4/25/2025
Descripción
An issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
Análisis IAImpulsado por IA
Productos Afectados
eyunjingyjcms
1.0.9
Referencias
- https://github.com/Zoe0427/YJCMSExploitThird Party Advisory
- https://github.com/Zoe0427/YJCMSExploitThird Party Advisory