CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2024/07/09 7:15 p.m.•10 views

CVE-2024-40036

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/userGroupdeal.php?mudi=add&nohrefStr=close...

8.8CVSS0.00436EPSS

Exploits1References1

NVD•added 2024/07/09 7:15 p.m.•9 views

CVE-2024-40039

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/userGroupdeal.php?mudi=del...

8.8CVSS0.00319EPSS

Exploits1References1

Cvelist•added 2024/07/09 12:0 a.m.•13 views

CVE-2024-40036

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/userGroupdeal.php?mudi=add&nohrefStr=close...

0.00436EPSS

Exploits1References1

CVE•added 2024/07/09 12:0 a.m.•45 views

CVE-2024-40039

idccms v1.35 is affected by a CSRF vulnerability in the /admin/userGroup_deal.php?mudi=del endpoint, enabling unauthorized actions. The CVE has a high severity (CVE/NVD 8.8) with network attack vector, low complexity and user interaction required. No exploit details are provided in the documents....

8.8CVSS7.2AI score0.00319EPSS

Exploits1References1Affected Software1

CVE•added 2024/07/09 12:0 a.m.•40 views

CVE-2024-40036

CVE-2024-40036 affects idccms v1.35, with a Cross-Site Request Forgery (CSRF) vulnerability exploitable via /admin/userGroup_deal.php?mudi=add&nohrefStr=close. The CVSS v3.1 base score is 8.8 (HIGH): attack vector NETWORK, attack complexity LOW, privileges required NONE, user interaction REQUIRED...

8.8CVSS7.2AI score0.00436EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by