2 matches found
CVE-2023-49375
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/friendlink/update...
CVE-2023-49375
CVE-2023-49375 affects JFinalCMS v5.0.0 with a Cross-Site Request Forgery (CSRF) vulnerability via the /admin/friend_link/update endpoint. The NVD entry reports CVSS v3.1 base score 8.8 (HIGH) with network attack vector, no user privileges, and required user interaction. Multiple connected adviso...