RSS   Vulnerabilities for 'Ec cloud e-commerce system'   RSS

2021-11-04
 
CVE-2020-21139

CWE-352
 

 
EC Cloud E-Commerce System v1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add admin accounts via /admin.html?do=user&act=add.

 


Copyright 2024, cxsecurity.com

 

Back to Top