5 matches found
Cross site request forgery (csrf)
A Cross-Site Request Forgery CSRF in MiniCMS v1.11 allows attackers to arbitrarily delete local .dat files via clicking on a malicious link...
CVE-2022-33121
A CSRF vulnerability in MiniCMS v1.11 allows attackers to delete local .dat files by clicking a malicious link. This has been reported across multiple feeds (including CNVD, Red Hat, NVD/OSV, CVE lists). The root cause is a CSRF in MiniCMS v1.11; there are no public exploit details within the pro...
CVE-2022-33121
A Cross-Site Request Forgery CSRF in MiniCMS v1.11 allows attackers to arbitrarily delete local .dat files via clicking on a malicious link...
CVE-2021-44970
MiniCMS v1.11 was discovered to contain a cross-site scripting XSS vulnerability via /mc-admin/page-edit.php...
Cross site scripting
MiniCMS v1.11 was discovered to contain a cross-site scripting XSS vulnerability via /mc-admin/page-edit.php...