CVE-2020-9270 admin 4년 ago CVE-2020-9270 ICE Hrm 26.2.0 is vulnerable to CSRF that leads to password reset via service.php. Source: CVE-2020-9270