9 matches found
CVE-2024-39156
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=add...
CVE-2024-39156
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=add...
CVE-2024-39154
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=del&dataType=word&dataTypeCN...
CVE-2024-39156
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=add...
CVE-2024-39154
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=del&dataType=word&dataTypeCN...
CVE-2024-39156
CVE-2024-39156 affects idccms v1.35, with a Cross-Site Request Forgery (CSRF) vulnerability in the /admin/keyWord_deal.php?mudi=add component. The CVSS 3.1 base score is 3.8 (LOW), with user interaction not required and high privileges required for exploitation hints (per the provided metrics). C...
Cross site request forgery (csrf)
OTCMS 3.20 allows XSS by adding a keyword or link to an article, as demonstrated by an admin/keyWorddeal.php?mudi=add request...
CVE-2018-8973
OTCMS 3.20 allows XSS by adding a keyword or link to an article, as demonstrated by an admin/keyWorddeal.php?mudi=add request...
CVE-2018-8973
OTCMS 3.20 allows XSS by adding a keyword or link to an article, as demonstrated by an admin/keyWorddeal.php?mudi=add request...