47 matches found
CVE-2024-42627
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/snippet/delete/3...
CVE-2024-46394
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF via /admin/?/user/add...
CVE-2024-46394
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF via /admin/?/user/add...
CVE-2024-46394
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF via /admin/?/user/add...
CVE-2024-46394
FrogCMS v0.9.5 is affected by a CSRF vulnerability via /admin/?/user/add. CVE-2024-46394 impacts FrogCMS 0.9.5 with a root cause allowing unauthorized actions through cross-site requests. CVSS v3.1 scores indicate High impact: NVD lists 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) with network attac...
CVE-2024-46086
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/delete/123...
CVE-2024-46086
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/delete/123...
CVE-2024-46086
Summary: CVE-2024-46086 affects FrogCMS v0.9.5 with a Cross-Site Request Forgery (CSRF) vulnerability exploitable through the API endpoint /admin/?/plugin/file_manager/delete/123. The Red Hat, NVD, CVE lists corroborate the issue as CSRF with high impact metrics (CVSS 3.1: AV:N/AC:L/PR:N/UI:R/S:U...
CVE-2024-46085
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/rename...
CVE-2024-46362
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/createdirectory...
CVE-2024-46362
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/createdirectory...
CVE-2024-46362
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/createdirectory...
CVE-2024-46085
FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/plugin/filemanager/rename...
CVE-2024-46085
FrogCMS v0.9.5 is affected by a Cross-Site Request Forgery (CSRF) vulnerability exploitable via the /admin/?/plugin/file_manager/rename endpoint. Root cause: CSRF allows unauthorized actions (e.g., file rename) from authenticated sessions. Impact details in the sources indicate potential for unau...
CVE-2024-46362
CVE-2024-46362 – FrogCMS v0.9.5 CSRF flaw : The Red Hat/NVD/NVD-linked entries describe a Cross‑Site Request Forgery vulnerability exploitable via the endpoint /admin/?/plugin/file_manager/create_directory in FrogCMS 0.9.5. The underlying issue is CSRF that could allow an attacker to perform unau...
CVE-2024-42624
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/page/delete/10...
CVE-2024-42625
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/layout/add...
CVE-2024-42626
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/snippet/add...
CVE-2024-42623
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/layout/delete/1...
CVE-2024-42631
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/layout/edit/1...