Unauthorized Access Vulnerability in CMS Enterprise Website Construction System 5.0 Allows for Unauthorized Administrative Access

Unauthorized Access Vulnerability in CMS Enterprise Website Construction System 5.0 Allows for Unauthorized Administrative Access

CVE-2021-37270 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

There is an unauthorized access vulnerability in the CMS Enterprise Website Construction System 5.0. Attackers can use this vulnerability to directly access the specified background path without logging in to the background to obtain the background administrator authority.

Learn more about our Web App Pen Testing.