← back
CVE-2021-20845

CVE-2021-20845

EPSS 0.5%
Cross-site request forgery (CSRF) vulnerability in Unlimited Sitemap Generator versions prior to v8.2 allows a remote attacker to hijack the authentication of an administrator and conduct arbitrary operation via a specially crafted web page.
Affected products
XML-Sitemaps · Unlimited Sitemap Generator

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/jp/JVN58407606/index.htmlhttps://www.xml-sitemaps.com/news-20210831.htmlhttps://www.xml-sitemaps.com/standalone-google-sitemap-generator.html