CVE-2024-22819

CVE-2024-22819 affects FlyCms v1.0 and is a Cross-Site Request Forgery (CSRF) vulnerability exploitable via the /system/email/email_templets_update endpoint. The issue arises from an unsafe CSRF protection surface on that API, allowing unintended requests to be performed in the context of an auth...

CVE-2024-22819

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailtempletsupdate...