Security Advisory

CVE-2020-19263

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-09 17:44:39

Last updated 2024-08-04 14:08:30

Assigner mitre

State PUBLISHED

Description

A cross-site request forgery (CSRF) in MipCMS v5.0.1 allows attackers to arbitrarily escalate user privileges to administrator via index.php?s=/user/ApiAdminUser/itemEdit.

← Browse all CVEs View on cve.org ↗