9 matches found
CVE-2024-0880
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
CVE-2024-0880
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
CVE-2024-0880
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
Cross site request forgery (csrf)
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
CVE-2024-0880 Qidianbang qdbcrm Password Reset cross-site request forgery
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
CVE-2024-0880 Qidianbang qdbcrm Password Reset cross-site request forgery
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
CVE-2024-0880
CVE-2024-0880 affects Qidianbang qdbcrm 1.1.0, specifically the Password Reset feature’s /user/edit?id=2 endpoint. The issue is a cross-site request forgery (CSRF) vulnerability that can be exploited remotely and has been publicly disclosed. Impact is described as enabling unauthorized state-chan...
PT-2024-15885 · Qidianbang · Qidianbang Qdbcrm
Name of the Vulnerable Software and Affected Versions: Qidianbang qdbcrm version 1.1.0 Description: A vulnerability was found in the Password Reset component of Qidianbang qdbcrm, affecting some unknown functionality of the file /user/edit?id=2. This issue leads to cross-site request forgery and...
Qidianbang qdbcrm Cross-Site Request Forgery Vulnerability
Qidianbang qdbcrm is a customer relationship management platform. A cross-site request forgery vulnerability exists in Qidianbang qdbcrm version 1.1.0, which originates from the inclusion of an unknown function in the component Password Reset, leading to cross-site request forgery...