{"id":"CVE-2022-23889","details":"The comment function in YzmCMS v6.3 was discovered as being able to be operated concurrently, allowing attackers to create an unusually large number of comments.","modified":"2026-03-14T08:43:13.097135Z","published":"2022-01-28T21:15:10.273Z","references":[{"type":"EVIDENCE","url":"https://github.com/yzmcms/yzmcms/issues/61"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/yzmcms/yzmcms","events":[{"introduced":"0"},{"last_affected":"5e421474dac3b71a29e12b61f0f0d1dbfb14ae36"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"6.3"}]}}],"versions":["v5.3.0","v5.8","v6.0","v6.1","v6.2","v6.3"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23889.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}]}