EUVD-2025-5918

Malicious code in bioql PyPI...

CVE-2024-51156

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via the component 'erp.07fly.net:80/admin/SysNotifyUser/del.html?id=93'...

CVE-2025-25379

Cross Site Request Forgery vulnerability in 07FLYCMS v.1.3.9 allows a remote attacker to execute arbitrary code via the id parameter of the del.html component...

CVE-2024-57160

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaTask/edit.html...

CVE-2024-57159

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via /erp.07fly.net:80/oa/OaWorkReport/add.html...

CVE-2024-57159

07FLYCMS V1.3.9 is affected by a CSRF vulnerability in the API endpoint /erp.07fly.net:80/oa/OaWorkReport/add.html. The issue is described across multiple sources (Red Hat, CNNVD, CVE lists) as a Cross-Site Request Forgery in this version; no specific patch/version fix is detailed in the provided...

CVE-2024-57161

CVE-2024-57161 affects 07FLYCMS v1.3.9 . Multiple connected sources confirm a Cross-Site Request Forgery (CSRF) vulnerability targeting the endpoint "/erp.07fly.net:80/oa/OaWorkReport/edit.html". The root cause is a CSRF flaw allowing unauthorized actions in that API path (no explicit exploit det...

CVE-2024-51156

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery CSRF via the component 'erp.07fly.net:80/admin/SysNotifyUser/del.html?id=93'...