CVE-2020-20343

Name of the Vulnerable Software and Affected Versions: WTCMS version 1.0

Description: The issue is related to a cross-site request forgery (CSRF) vulnerability. This vulnerability is located in the "index.php?g=admin&m=nav&a=add post" component, which allows attackers to arbitrarily add articles in the administrator background.

Recommendations: For WTCMS version 1.0, as a temporary workaround, consider restricting access to the "index.php?g=admin&m=nav&a=add post" component until a patch is available. Avoid using this component in the administrator background to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.