9 matches found
CVE-2024-39156
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=add...
CVE-2024-39156
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=add...
CVE-2024-39154
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=del&dataType=word&dataTypeCN...
CVE-2024-39154
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=del&dataType=word&dataTypeCN...
CVE-2024-39156
idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/keyWorddeal.php?mudi=add...
CVE-2024-39156
CVE-2024-39156 affects idccms v1.35, with a Cross-Site Request Forgery (CSRF) vulnerability in the /admin/keyWord_deal.php?mudi=add component. The CVSS 3.1 base score is 3.8 (LOW), with user interaction not required and high privileges required for exploitation hints (per the provided metrics). C...
CVE-2018-8973
OTCMS 3.20 allows XSS by adding a keyword or link to an article, as demonstrated by an admin/keyWorddeal.php?mudi=add request...
Cross site request forgery (csrf)
OTCMS 3.20 allows XSS by adding a keyword or link to an article, as demonstrated by an admin/keyWorddeal.php?mudi=add request...
CVE-2018-8973
OTCMS 3.20 allows XSS by adding a keyword or link to an article, as demonstrated by an admin/keyWorddeal.php?mudi=add request...