CNNVD-202601-2869 Information

CNNVD ID

CNNVD-202601-2869

Related CVE

CVE-2021-47800

• CNNVD Published: 2026-01-16

Description (Chinese)

b2evolution CMS是b2evolution Group开源的一个内容管理系统。 b2evolution CMS 7.2.2版本存在跨站请求伪造漏洞，该漏洞源于跨站请求伪造，可能导致未经身份验证修改管理员账户详情。

Description (English)

b2avolution CMS is a content management system for b2avolution group open source. Version 7.2.2 of b2evolution CMS contains a false gap in cross-site requests, which arises from cross-site requests for forgery and may lead to unidentified changes in the details of the administrator ’ s accounts.

Hazard Level

High

Vulnerability Type

跨站请求伪造

Affected Vendor

b2evolution Group

Published

2026-01-16

Last Modified

2026-02-24

References

https://b2evolution.net/ https://b2evolution.net/downloads/ https://github.com/b2evolution/b2evolution https://www.exploit-db.com/exploits/50081 https://www.vulncheck.com/advisories/bevolution-edit-account-details-cross-site-request-forgery-csrf