← Back to CVE List
CVE-2020-21139
EC Cloud E-Commerce System v1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add admin accounts via /admin.html?do=user&act=add.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt