CVE-2020-25453 Posted by Cyberthreat Blog | Sep 15, 2020 | CVE Notifications | 0 | LinkedIn An issue was discovered in BlackCat CMS v.1.3.6. There is a CSRF vulnerability (bypass csrf_token) that allows remote arbitrary code execution.