4 matches found
CVE-2024-35559
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/infoMovedeal.php?mudi=rev=close...
CVE-2024-35559
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/infoMovedeal.php?mudi=rev&nohrefStr=close...
CVE-2024-35559
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/infoMovedeal.php?mudi=rev&nohrefStr=close...
CVE-2024-35559
idccms v1.35 contains a Cross-Site Request Forgery (CSRF) vulnerability in the admin/infoMove_deal.php endpoint (parameters mudi and nohrefStr=close). CVSS v3.1 base score 8.8 (HIGH): Network attack vector, no privileges required, user interaction required, and with high confidentiality, integrit...