CVE-2020-21126

Name of the Vulnerable Software and Affected Versions: MetInfo version 7.0.0

Description: The issue is a Cross-Site Request Forgery (CSRF) that affects MetInfo. This occurs via the "admin/?n=admin&c=index&a=doSaveInfo" endpoint, allowing for potential unauthorized actions.

Recommendations: For MetInfo version 7.0.0, consider disabling access to the "admin/?n=admin&c=index&a=doSaveInfo" endpoint until a patch is available. Restricting access to this endpoint can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.