CVE-2020-19964

CVE-2020-19964

EPSS 0.6%

A Cross Site Request Forgery (CSRF) vulnerability was discovered in PHPMyWind 5.6 which allows attackers to create a new administrator account without authentication.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://phpmywind.com https://github.com/gaozhifeng/PHPMyWind https://github.com/gaozhifeng/PHPMyWind/issues/9