CVE-2020-21252 Information

Description

Cross Site Request Forgery vulnerability in Neeke HongCMS 3.0.0 allows a remote attacker to execute arbitrary code and escalate privileges via the updateusers parameter.

Reference

https://github.com/Neeke/HongCMS/issues/13