Cross Site Request Forgery (CSRF) vulnerability exists in EyouCMS 1.3.6 that can add an htm page to execute the js code via login.php?m=admin&c=Filemanager&a=newfile&lang=cn.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eyoucms eyoucms 1.3.6 |