Bll-Lo

Name of the Vulnerable Software and Affected Versions: YzmCMS version 5.8 Description: An issue was discovered in the background collection management of YzmCMS, allowing for a Server-Side Request Forgery (SSRF) vulnerability. This vulnerability enables arbitrary file read. Recommendations: For YzmCMS version 5.8, as a temporary workaround, consider restricting access to the background collection management until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.