Vulnerabilities

CVE-2020-19669

August 24, 2021

Cross Site Request Forgery (CSRF) vulnerability exists in Eyoucms 1.3.6 that can add an admin account via /login.php?m=admin&c=Admin&a=admin_add&lang=cn.

Summary:

Cross Site Request Forgery (CSRF) vulnerability exists in Eyoucms 1.3.6 that can add an admin account via /login.php?m=admin&c=Admin&a=admin_add&lang=cn.

Reference Links(if available):

https://github.com/eyoucms/eyoucms/issues/4

CVSS Score (if available)

v2: / MEDIUM

v3: /

Links to Exploits(if available)

Tags: CVE, CVE-2020-19669, exploit, MISC, vulnerability

CVE-2020-19669

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

BianLian Ransomware Victim: Optometric Physicians of Middle Tennessee

RansomHouse Ransomware Victim: Hirsh Industries

CISA: Cisco Releases Security Advisories for Cisco Integrated Management Controller

CISA: CISA and Partners Release Advisory on Akira Ransomware

CISA: CISA Releases Four Industrial Control Systems Advisories

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

You may have missed

BianLian Ransomware Victim: Optometric Physicians of Middle Tennessee

RansomHouse Ransomware Victim: Hirsh Industries

CISA: Cisco Releases Security Advisories for Cisco Integrated Management Controller

CISA: CISA and Partners Release Advisory on Akira Ransomware

CISA: CISA Releases Four Industrial Control Systems Advisories