4 matches found
CVE-2024-24470
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the updatepost.php component...
CVE-2024-24470
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the updatepost.php component...
CVE-2024-24470
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the updatepost.php component...
CVE-2024-24470
CVE-2024-24470 is a CSRF vulnerability in flusity-CMS 2.33 exploitable via update_post.php that can lead to remote arbitrary code execution. Affected component: update_post.php in flusity-CMS v2.33. Root cause: Cross Site Request Forgery. Reported in multiple sources (NVD/Red Hat/etc.). PoC exist...