CVE-2020-18409 Information

Description

Cross Site Request Forgery (CSRF) vulnerability was discovered in CatfishCMS 4.8.63 that would allow attackers to obtain administrator permissions via /index.php/admin/index/modifymanage.html.

Reference

https://github.com/xwlrbh/Catfish/issues/5