Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2020-18648

Description

Cross Site Request Forgery (CSRF) in JuQingCMS v1.0 allows remote attackers to gain local privileges via the component "JuQingCMS_v1.0/admin/index.php?c=administrator&a=add".

POC

Reference

- https://github.com/GodEpic/JuQingCMS/issues/1

Github

- https://github.com/Live-Hack-CVE/CVE-2020-18648