CVE-2020-20502 Information

Description

Cross Site Request Forgery found in yzCMS v.2.0 allows a remote attacker to execute arbitrary code via the token check function.

Reference

https://github.com/yzmcms/yzmcms/issues/27 http://www.yzmcms.com/