CVE-2024-22601
CVE-2024-22601 concerns FlyCms v1.0 and a CSRF vulnerability exploitable at the API endpoint /system/score/scorerule_save. The connected documents consistently describe a Cross-Site Request Forgery issue in FlyCms 1.0, with the underlying risk indicated as high (CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:U...