CVE-2022-43323

Name of the Vulnerable Software and Affected Versions EyouCMS version 1.5.9-UTF8-SP1

Description A Cross-Site Request Forgery (CSRF) issue was discovered in the Top Up Balance component under the Edit Member module. This allows for malicious requests to be made without the user's knowledge or consent.

Recommendations For EyouCMS version 1.5.9-UTF8-SP1, as a temporary workaround, consider disabling the Top Up Balance component under the Edit Member module until a patch is available. Restrict access to the Edit Member module to minimize the risk of exploitation. Avoid using the Top Up Balance feature in the affected module until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.