2021-09-23 19:46:23
mitre
PUBLISHED
A cross-site request forgery (CSRF) in /controller/pay.class.php of YzmCMS v5.5 allows attackers to access sensitive components of the application.