4 matches found
Cross site request forgery (csrf)
Flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery CSRF via the component /cover/addons/infomediagallery/action/editaddonpost.php...
Cross site scripting
A cross-site scripting XSS vulnerability in the Addon JD Flusity 'Media Gallery with description' module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Gallery name text field...
CVE-2024-26445
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery CSRF via the component /core/tools/deleteplace.php...
Cross site request forgery (csrf)
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery CSRF via the component /core/tools/addtranslation.php...