2 matches found
CVE-2024-48341
dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/doAdminAction.php?act=addShop...
PT-2025-36498
Name of the Vulnerable Software and Affected Versions: dingfanzu CMS version 1.0 Description: The application suffers from a Cross-Site Request Forgery CSRF issue. This occurs through the /admin/doAdminAction.php?act=addShop component. Recommendations: Apply appropriate CSRF protection mechanisms...