Lucene search
K

4 matches found

NVD
NVD
added 2025/04/27 6:15 p.m.15 views

CVE-2025-3979

A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-password-ajax-1 of the component Password Change Handler. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...

6.5CVSS0.00259EPSS
Exploits1References4
Circl
Circl
added 2025/04/27 6:10 p.m.8 views

CVE-2025-3979

creationtimestamp| type| source ---|---|--- 2025-04-27 18:10:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13629 2025-04-27 21:20:11+00:00| seen| https://t.me/cvedetector/23850 2025-04-27 21:40:18+00:00| seen|...

6.5CVSS4.5AI score0.00259EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/04/27 5:31 p.m.22 views

CVE-2025-3979 dazhouda lecms Password Change index.php cross-site request forgery

A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-password-ajax-1 of the component Password Change Handler. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...

5.3CVSS0.00259EPSS
Exploits1References4
CVE
CVE
added 2025/04/27 5:31 p.m.55 views

CVE-2025-3979

CVE-2025-3979 affects dazhouda lecms version 3.0.3, specifically the Password Change Handler and its /index.php?my-password-ajax-1 endpoint. Descriptions across sources state a cross-site request forgery vulnerability that can be initiated remotely and exploited publicly disclosed. The issue appe...

6.5CVSS4.6AI score0.00259EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder