Vulnerabilities > EC Cloud E Commerce System Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-11-04	CVE-2020-21139	Cross-Site Request Forgery (CSRF) vulnerability in EC Cloud E-Commerce System Project EC Cloud E-Commerce System 1.3 EC Cloud E-Commerce System v1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add admin accounts via /admin.html?do=user&act=add. network ec-cloud-e-commerce-system-project CWE-352	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.