PT-2024-26272 · Idccms · Idccms

Name of the Vulnerable Software and Affected Versions: idccms version 1.35 Description: A Cross-Site Request Forgery CSRF issue was discovered in idccms via the component "admin/banner deal.php?mudi=add". This allows for potential unauthorized actions. Recommendations: For idccms version 1.35, as...

CVE-2024-35010

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/bannerdeal.php?mudi=del&dataType=&dataTypeCN=%E5%9B%BE%E7%89%87%E5%B9%BF%E5%91%8A&theme=cs&dataID=6...

PT-2024-26290 · Idccms · Idccms

Name of the Vulnerable Software and Affected Versions: idccms version 1.35 Description: The issue is related to a Cross-Site Request Forgery CSRF in the /admin/banner deal.php component. The mudi, dataType, dataTypeCN, theme, and dataID parameters are involved. This allows for unauthorized action...

CVE-2018-18725

An XSS issue was discovered in admin/banner/editbanner?id=20 in YUNUCMS 1.1.5...

YUNUCMS cross-site scripting vulnerability (CNVD-2018-23277)

YUNUCMS is a three-network, self-substation system of open source content management system. YUNUCMS 1.1.5 admin/banner/editbanner?id=20 cross-site scripting vulnerability , attackers can exploit the vulnerability of cross-site attacks...