CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

108 matches found

NVD•added 2025/01/16 4:15 p.m.•13 views

CVE-2024-57159

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaWorkReport/add.html...

3.5CVSS0.00149EPSS

Exploits1References1

NVD•added 2025/01/16 4:15 p.m.•17 views

CVE-2024-57160

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaTask/edit.html...

4.3CVSS0.00164EPSS

Exploits1References1

Cvelist•added 2025/01/16 12:0 a.m.•13 views

CVE-2024-57159

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaWorkReport/add.html...

0.00149EPSS

Exploits1References1

Vulnrichment•added 2025/01/16 12:0 a.m.•10 views

CVE-2024-57161

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaWorkReport/edit.html...

4.8AI score0.00164EPSS

Exploits1References1

Vulnrichment•added 2025/01/16 12:0 a.m.•12 views

CVE-2024-57160

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaTask/edit.html...

4.8AI score0.00164EPSS

Exploits1References1

CNNVD•added 2025/01/16 12:0 a.m.•2 views

07FLYCMS 安全漏洞

07FLYCMS is a free and open source content management system from China Zero Takeoff 07FLY. A security vulnerability exists in 07FLYCMS version V1.3.9, which stems from vulnerability to cross-site request forgery attacks...

4.3CVSS6.6AI score0.00164EPSS

Exploits1References1

CNNVD•added 2025/01/16 12:0 a.m.•3 views

07FLYCMS 安全漏洞

3.5CVSS6.6AI score0.00149EPSS

Exploits1References1

Vulnrichment•added 2025/01/16 12:0 a.m.•8 views

CVE-2024-57159

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaWorkReport/add.html...

4.3AI score0.00149EPSS

Exploits1References1

Cvelist•added 2025/01/16 12:0 a.m.•16 views

CVE-2024-57161

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaWorkReport/edit.html...

0.00164EPSS

Exploits1References1

CNNVD•added 2025/01/16 12:0 a.m.•4 views

07FLYCMS 安全漏洞

3.5CVSS6.7AI score0.00149EPSS

Exploits1References1

Positive Technologies•added 2025/01/16 12:0 a.m.•3 views

PT-2025-3405 · 07Flycms · 07Flycms

Name of the Vulnerable Software and Affected Versions: 07FLYCMS version 1.3.9 Description: A Cross-Site Request Forgery CSRF issue was discovered in 07FLYCMS. The issue is related to the "/erp.07fly.net:80/oa/OaWorkReport/edit.html" API endpoint. Recommendations: For 07FLYCMS version 1.3.9,...

4.3CVSS6.8AI score0.00164EPSS

Exploits1References6

Vulnrichment•added 2025/01/16 12:0 a.m.•7 views

CVE-2024-57611

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via admin/doAdminAction.php?act=editShop&shopId...

4.3AI score0.00149EPSS

Exploits1References1

CNNVD•added 2025/01/16 12:0 a.m.•2 views

07FLYCMS 安全漏洞

4.3CVSS6.6AI score0.00164EPSS

Exploits1References1

Positive Technologies•added 2025/01/16 12:0 a.m.•3 views

PT-2025-3403 · 07Flycms · 07Flycms

Name of the Vulnerable Software and Affected Versions: 07FLYCMS version 1.3.9 Description: A Cross-Site Request Forgery CSRF issue was discovered in 07FLYCMS. The issue is related to the "/erp.07fly.net:80/oa/OaWorkReport/add.html" API endpoint. Recommendations: For 07FLYCMS version 1.3.9, as a...

3.5CVSS6.8AI score0.00149EPSS

Exploits1References4

Cvelist•added 2025/01/16 12:0 a.m.•16 views

CVE-2024-57160

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaTask/edit.html...

0.00164EPSS

Exploits1References1

CVE•added 2025/01/16 12:0 a.m.•53 views

CVE-2024-57159

07FLYCMS V1.3.9 is affected by a CSRF vulnerability in the API endpoint /erp.07fly.net:80/oa/OaWorkReport/add.html. The issue is described across multiple sources (Red Hat, CNNVD, CVE lists) as a Cross-Site Request Forgery in this version; no specific patch/version fix is detailed in the provided...

3.5CVSS7.7AI score0.00149EPSS

Exploits1References1Affected Software1

CVE•added 2025/01/16 12:0 a.m.•50 views

CVE-2024-57160

07FLYCMS v1.3.9 is associated with CVE-2024-57160 due to a Cross‑Site Request Forgery (CSRF) via the endpoint /erp.07fly.net:80/oa/OaTask/edit.html. The connected sources corroborate a CSRF issue affecting this specific version; no exploitable details or active exploit status are provided in the ...

4.3CVSS7.7AI score0.00164EPSS

Exploits1References1Affected Software1

CVE•added 2025/01/16 12:0 a.m.•44 views

CVE-2024-57161

CVE-2024-57161 affects 07FLYCMS v1.3.9 . Multiple connected sources confirm a Cross-Site Request Forgery (CSRF) vulnerability targeting the endpoint "/erp.07fly.net:80/oa/OaWorkReport/edit.html". The root cause is a CSRF flaw allowing unauthorized actions in that API path (no explicit exploit det...

4.3CVSS7.7AI score0.00164EPSS

Exploits1References1Affected Software1

CVE•added 2025/01/16 12:0 a.m.•51 views

CVE-2024-57611

CVE-2024-57611 affects 07FLYCMS V1.3.9 and is associated with a Cross-Site Request Forgery (CSRF) vulnerability reachable via admin/doAdminAction.php?act=editShop&shopId. The connected sources corroborate a CSRF issue in this version, but there is no public detail in the provided documents about ...

3.5CVSS7.2AI score0.00149EPSS

Exploits1References1Affected Software1

Cvelist•added 2025/01/16 12:0 a.m.•14 views

CVE-2024-57611

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via admin/doAdminAction.php?act=editShop&shopId...

0.00149EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by