Lucene search
K

207 matches found

CNNVD
CNNVD
added 2024/02/29 12:0 a.m.4 views

FlyCms Security Vulnerability

sunkaifei FlyCms is sunkaifei open source application . A similar to Zhihu based on Q&A completely open source JAVA language development of social networking site builder . FlyCms v.1.0 version of a security vulnerability . Remote attackers use this vulnerability through the...

8.8CVSS7.6AI score0.0069EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/02/01 12:0 a.m.17 views

CVE-2024-22939

Cross Site Request Forgery vulnerability in FlyCms v.1.0 allows a remote attacker to execute arbitrary code via the system/article/categoryedit component...

8.9AI score0.0069EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/02/01 12:0 a.m.5 views

PT-2024-19621 · Flycms · Flycms

Name of the Vulnerable Software and Affected Versions: FlyCms version 1.0 Description: A Cross Site Request Forgery vulnerability allows a remote attacker to execute arbitrary code via the "system/article/category edit" component. This issue enables attackers to perform unauthorized actions on...

8.8CVSS7.6AI score0.0069EPSS
Exploits1References6
CVE
CVE
added 2024/02/01 12:0 a.m.39 views

CVE-2024-22939

CVE-2024-22939 describes a Cross Site Request Forgery in FlyCms v1.0, specifically via the system/article/category_edit component, enabling a remote attacker to execute arbitrary code. The vulnerability is categorized with high impact (C/H/I/A) and network attack vector with user interaction requ...

8.8CVSS7.8AI score0.0069EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/02/01 12:0 a.m.28 views

CVE-2024-22939

Cross Site Request Forgery vulnerability in FlyCms v.1.0 allows a remote attacker to execute arbitrary code via the system/article/categoryedit component...

7.8AI score0.0069EPSS
Exploits1References2
CNVD
CNVD
added 2024/01/24 12:0 a.m.15 views

FlyCms Cross-Site Request Forgery Vulnerability

FlyCms is sunkaifei open source an application . A similar to Zhihu to Q&A based on the fully open source JAVA language development of social network building program . FlyCms cross-site request forgery vulnerability , the vulnerability stems from /system/admin/addgroupsave location does not...

8.8CVSS6.8AI score0.00324EPSS
Exploits1References1
NVD
NVD
added 2024/01/18 5:15 p.m.11 views

CVE-2024-22817

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailconfupdagte...

8.8CVSS8.8AI score0.00321EPSS
Exploits1References1
OSV
OSV
added 2024/01/18 5:15 p.m.3 views

CVE-2024-22601

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/score/scorerulesave...

8.8CVSS5.8AI score0.00235EPSS
Exploits0References1
OSV
OSV
added 2024/01/18 5:15 p.m.3 views

CVE-2024-22603

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/links/addlink...

8.8CVSS5.8AI score0.00328EPSS
Exploits1References1
NVD
NVD
added 2024/01/18 5:15 p.m.15 views

CVE-2024-22603

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/links/addlink...

8.8CVSS8.8AI score0.00328EPSS
Exploits1References1
NVD
NVD
added 2024/01/18 5:15 p.m.12 views

CVE-2024-22818

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerbility via /system/site/filterKeywordsave...

8.8CVSS8.8AI score0.00321EPSS
Exploits1References1
OSV
OSV
added 2024/01/18 5:15 p.m.3 views

CVE-2024-22819

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailtempletsupdate...

8.8CVSS5.8AI score0.00321EPSS
Exploits1References1
OSV
OSV
added 2024/01/18 5:15 p.m.2 views

CVE-2024-22817

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailconfupdagte...

8.8CVSS5.8AI score0.00321EPSS
Exploits1References1
NVD
NVD
added 2024/01/18 5:15 p.m.21 views

CVE-2024-22601

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/score/scorerulesave...

8.8CVSS8.8AI score0.00235EPSS
Exploits0References1
NVD
NVD
added 2024/01/18 5:15 p.m.15 views

CVE-2024-22819

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailtempletsupdate...

8.8CVSS8.8AI score0.00321EPSS
Exploits1References1
Prion
Prion
added 2024/01/18 5:15 p.m.19 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/score/scorerulesave...

6.8CVSS7.4AI score0.00235EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2024/01/18 5:15 p.m.13 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailconfupdagte...

6.8CVSS7.4AI score0.00321EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2024/01/18 5:15 p.m.13 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailtempletsupdate...

6.8CVSS7.4AI score0.00321EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2024/01/18 5:15 p.m.13 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerbility via /system/site/filterKeywordsave...

6.8CVSS7.4AI score0.00321EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2024/01/18 5:15 p.m.13 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/links/addlink...

6.8CVSS7.4AI score0.00328EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder