2 matches found
CVE-2024-35109
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /homeProdeal.php?mudi=add=close...
CVE-2024-35109
CVE-2024-35109 affects idccms v1.35 with a CSRF in the component handling /homePro_deal.php?mudi=add&nohrefStr=close (and related variants in the /homePro deal.php path). The issue enables unauthorized requests to be made via forged requests, with user interaction required. A PT-2024-26321 entry ...