4 matches found
CVE-2024-0880
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
CVE-2024-0880 Qidianbang qdbcrm Password Reset cross-site request forgery
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
CVE-2024-0880 Qidianbang qdbcrm Password Reset cross-site request forgery
A vulnerability was found in Qidianbang qdbcrm 1.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /user/edit?id=2 of the component Password Reset. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The...
CVE-2024-0880
CVE-2024-0880 affects Qidianbang qdbcrm 1.1.0, specifically the Password Reset feature’s /user/edit?id=2 endpoint. The issue is a cross-site request forgery (CSRF) vulnerability that can be exploited remotely and has been publicly disclosed. Impact is described as enabling unauthorized state-chan...