CVE-2020-20343

Publication date

2021-09-01 21:25:09

Family

mitre

State

PUBLISHED

Description

WTCMS 1.0 contains a cross-site request forgery (CSRF) vulnerability in the index.php?g=admin&m=nav&a=add_post component that allows attackers to arbitrarily add articles in the administrator background.