4 matches found
CVE-2025-3979
A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-password-ajax-1 of the component Password Change Handler. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...
CVE-2025-3979
creationtimestamp| type| source ---|---|--- 2025-04-27 18:10:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13629 2025-04-27 21:20:11+00:00| seen| https://t.me/cvedetector/23850 2025-04-27 21:40:18+00:00| seen|...
CVE-2025-3979 dazhouda lecms Password Change index.php cross-site request forgery
A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-password-ajax-1 of the component Password Change Handler. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...
CVE-2025-3979
CVE-2025-3979 affects dazhouda lecms version 3.0.3, specifically the Password Change Handler and its /index.php?my-password-ajax-1 endpoint. Descriptions across sources state a cross-site request forgery vulnerability that can be initiated remotely and exploited publicly disclosed. The issue appe...