CVE-2022-45276
9.8CRITICALAn issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
Publicado: 11/23/2022Atualizado: 4/25/2025
Descrição
An issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.
Análise IADesenvolvido por IA
Produtos Afetados
eyunjingyjcms
1.0.9
Referências
- https://github.com/Zoe0427/YJCMSExploitThird Party Advisory
- https://github.com/Zoe0427/YJCMSExploitThird Party Advisory