Security Advisory
CVE-2020-21252
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Cross Site Request Forgery vulnerability in Neeke HongCMS 3.0.0 allows a remote attacker to execute arbitrary code and escalate privileges via the updateusers parameter.