Lucene search
K

207 matches found

cnnvd
cnnvd
added 2024/02/29 12:0 a.m.5 views

FlyCms Security Vulnerability

sunkaifei FlyCms is sunkaifei open source application . A similar to Zhihu based on Q&A completely open source JAVA language development of social networking site builder . FlyCms v.1.0 version of a security vulnerability . Remote attackers use this vulnerability through the...

8.8CVSS7.6AI score0.0069EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2024/02/01 12:0 a.m.17 views

CVE-2024-22939

Cross Site Request Forgery vulnerability in FlyCms v.1.0 allows a remote attacker to execute arbitrary code via the system/article/categoryedit component...

8.9AI score0.0069EPSS
Exploits1References2
cvelist
cvelist
added 2024/02/01 12:0 a.m.31 views

CVE-2024-22939

Cross Site Request Forgery vulnerability in FlyCms v.1.0 allows a remote attacker to execute arbitrary code via the system/article/categoryedit component...

7.8AI score0.0069EPSS
Exploits1References2
cve
cve
added 2024/02/01 12:0 a.m.40 views

CVE-2024-22939

CVE-2024-22939 describes a Cross Site Request Forgery in FlyCms v1.0, specifically via the system/article/category_edit component, enabling a remote attacker to execute arbitrary code. The vulnerability is categorized with high impact (C/H/I/A) and network attack vector with user interaction requ...

8.8CVSS7.8AI score0.0069EPSS
Exploits1References2Affected Software1
ptsecurity
ptsecurity
added 2024/02/01 12:0 a.m.6 views

PT-2024-19621 · Flycms · Flycms

Name of the Vulnerable Software and Affected Versions: FlyCms version 1.0 Description: A Cross Site Request Forgery vulnerability allows a remote attacker to execute arbitrary code via the "system/article/category edit" component. This issue enables attackers to perform unauthorized actions on...

8.8CVSS7.6AI score0.0069EPSS
Exploits1References6
cnvd
cnvd
added 2024/01/24 12:0 a.m.15 views

FlyCms Cross-Site Request Forgery Vulnerability

FlyCms is sunkaifei open source an application . A similar to Zhihu to Q&A based on the fully open source JAVA language development of social network building program . FlyCms cross-site request forgery vulnerability , the vulnerability stems from /system/admin/addgroupsave location does not...

8.8CVSS6.8AI score0.00324EPSS
Exploits1References1
nvd
nvd
added 2024/01/18 5:15 p.m.21 views

CVE-2024-22817

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailconfupdagte...

8.8CVSS8.8AI score0.00321EPSS
Exploits1References1
nvd
nvd
added 2024/01/18 5:15 p.m.25 views

CVE-2024-22819

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailtempletsupdate...

8.8CVSS8.8AI score0.00321EPSS
Exploits1References1
osv
osv
added 2024/01/18 5:15 p.m.5 views

CVE-2024-22601

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/score/scorerulesave...

8.8CVSS5.8AI score0.00235EPSS
Exploits0References1
osv
osv
added 2024/01/18 5:15 p.m.3 views

CVE-2024-22603

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/links/addlink...

8.8CVSS5.8AI score0.00328EPSS
Exploits1References1
osv
osv
added 2024/01/18 5:15 p.m.3 views

CVE-2024-22817

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailconfupdagte...

8.8CVSS5.8AI score0.00321EPSS
Exploits1References1
osv
osv
added 2024/01/18 5:15 p.m.3 views

CVE-2024-22819

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailtempletsupdate...

8.8CVSS5.8AI score0.00321EPSS
Exploits1References1
nvd
nvd
added 2024/01/18 5:15 p.m.21 views

CVE-2024-22601

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/score/scorerulesave...

8.8CVSS8.8AI score0.00235EPSS
Exploits0References1
nvd
nvd
added 2024/01/18 5:15 p.m.25 views

CVE-2024-22603

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/links/addlink...

8.8CVSS8.8AI score0.00328EPSS
Exploits1References1
nvd
nvd
added 2024/01/18 5:15 p.m.18 views

CVE-2024-22818

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerbility via /system/site/filterKeywordsave...

8.8CVSS8.8AI score0.00321EPSS
Exploits1References1
prion
prion
added 2024/01/18 5:15 p.m.19 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/score/scorerulesave...

6.8CVSS7.4AI score0.00235EPSS
Exploits0References1Affected Software1
prion
prion
added 2024/01/18 5:15 p.m.13 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailconfupdagte...

6.8CVSS7.4AI score0.00321EPSS
Exploits1References1Affected Software1
prion
prion
added 2024/01/18 5:15 p.m.13 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/links/addlink...

6.8CVSS7.4AI score0.00328EPSS
Exploits1References1Affected Software1
prion
prion
added 2024/01/18 5:15 p.m.14 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerability via /system/email/emailtempletsupdate...

6.8CVSS7.4AI score0.00321EPSS
Exploits1References1Affected Software1
prion
prion
added 2024/01/18 5:15 p.m.14 views

Cross site request forgery (csrf)

FlyCms v1.0 contains a Cross-Site Request Forgery CSRF vulnerbility via /system/site/filterKeywordsave...

6.8CVSS7.4AI score0.00321EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder