Fastspot BigTree CMS Cross-Site Request Forgery Vulnerability (CNVD-2017-03387)

Fastspot BigTree CMS is the United States Fastspot company based on PHP and MySQL open source content management system CMS. A cross-site request forgery vulnerability exists in Fastspot BigTree CMS version 4.1.18. An attacker can exploit this vulnerability to perform unauthorized operations with...

Fastspot BigTree CMS Cross-Site Request Forgery Vulnerability (CNVD-2017-03389)

Fastspot BigTree CMS is the United States Fastspot company based on PHP and MySQL open source content management system CMS. A cross-site request forgery vulnerability exists in Fastspot BigTree CMS version 4.2.16. The vulnerability can be exploited by an attacker to perform unauthorized operatio...

Fastspot BigTree CMS Cross-Site Request Forgery Vulnerability (CNVD-2017-03386)

Fastspot BigTree CMS is the United States Fastspot company based on PHP and MySQL open source content management system CMS. A cross-site request forgery vulnerability exists in Fastspot BigTree CMS versions 4.1.18 and 4.2.16. A remote attacker can exploit this vulnerability to delete users with...

Fastspot BigTree CMS Cross-Site Request Forgery Vulnerability

Fastspot BigTree CMS is the United States Fastspot company based on PHP and MySQL open source content management system CMS. A cross-site request forgery vulnerability exists in Fastspot BigTree CMS version 4.2.16. An attacker can exploit this vulnerability to perform unauthorized operations...

Fastspot BigTree bigtree-form-builder input validation vulnerability

Fastspot BigTree is the United States Fastspot company based on PHP and MySQL open source content management system CMS. bigtree-form-builder is one of the administrators used to build and collect the front-end user input information form . Fastspot BigTree bigtree-form-builder A security...

Authorization

An issue was discovered in Fastspot BigTree bigtree-form-builder before 1.2. The vulnerability exists due to insufficient filtration of user-supplied data in multiple HTTP POST parameters passed to a "site/index.php/../../extensions/com.fastspot.form-builder/ajax/redraw-field.php" URL. An attacke...

CVE-2016-10215

An issue was discovered in Fastspot BigTree bigtree-form-builder before 1.2. The vulnerability exists due to insufficient filtration of user-supplied data in multiple HTTP POST parameters passed to a "site/index.php/../../extensions/com.fastspot.form-builder/ajax/redraw-field.php" URL. An attacke...

CVE-2016-10215

An issue was discovered in Fastspot BigTree bigtree-form-builder before 1.2. The vulnerability exists due to insufficient filtration of user-supplied data in multiple HTTP POST parameters passed to a "site/index.php/../../extensions/com.fastspot.form-builder/ajax/redraw-field.php" URL. An attacke...

CVE-2016-10215

The CVE-2016-10215 entry concerns Fastspot BigTree bigtree-form-builder before 1.2. The vulnerability arises from insufficient filtration of user-supplied data in multiple HTTP POST parameters passed to site/index.php/../../extensions/com.fastspot.form-builder/ajax/redraw-field.php, allowing an a...

CVE-2016-10215

An issue was discovered in Fastspot BigTree bigtree-form-builder before 1.2. The vulnerability exists due to insufficient filtration of user-supplied data in multiple HTTP POST parameters passed to a "site/index.php/../../extensions/com.fastspot.form-builder/ajax/redraw-field.php" URL. An attacke...

Fastspot BigTree has multiple vulnerabilities

Fastspot BigTree is a PHP and MySQL based open source content management system . SQL injection vulnerabilities and cross-site scripting vulnerabilities exist in Fastspot BigTree, which can be exploited by an attacker to steal cookie-based authentication or to control the application, access or...