CVE-2022-45276 Information

Description

An issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account password.

Reference

https://github.com/Zoe0427/YJCMS