Lucene search
K

5 matches found

OSV
OSV
added 2024/05/22 2:15 p.m.2 views

CVE-2024-35555

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/shareswitch.php?mudi=switch&dataType=newsWeb&fieldName=state&fieldName2=state&tabName=infoWeb&dataID=40...

6.3CVSS5.8AI score0.00217EPSS
Exploits1References1
OSV
OSV
added 2024/05/14 4:17 p.m.3 views

CVE-2024-35009

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/shareswitch.php?mudi=switch&dataType=&fieldName=state&fieldName2=state&tabName=banner&dataID=6...

8.8CVSS5.8AI score0.00301EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.7 views

PT-2024-26288 · Idccms · Idccms

Name of the Vulnerable Software and Affected Versions: idccms version 1.35 Description: The issue is related to a Cross-Site Request Forgery CSRF in the component /admin/share switch.php. This component is vulnerable due to the presence of certain parameters, including mudi, dataType, fieldName,...

8.8CVSS6.8AI score0.00301EPSS
Exploits1References3
CNVD
CNVD
added 2018/09/17 12:0 a.m.3 views

OTCMS cross-site scripting vulnerability (CNVD-2018-19744)

OTCMS is an article-based web content management system CMS. A cross-site scripting vulnerability exists in the admin/shareswitch.php file in OTCMS version 3.61. A remote attacker can use the 'fieldName', 'fieldName2' and 'tabName' parameters to inject arbitrary Web script or HTML with the...

6.1CVSS6.1AI score0.00692EPSS
Exploits1References1
OSV
OSV
added 2018/09/16 5:29 p.m.5 views

CVE-2018-17086

An issue was discovered in OTCMS 3.61. XSS exists in admin/shareswitch.php via these parameters: fieldName fieldName2 tabName...

6.1CVSS5.8AI score0.00692EPSS
Exploits1References1
Rows per page
Query Builder