Lucene search

Ftcms Security Vulnerabilities

cve

CVE-2022-37730

In ftcms 2.1, there is a Cross Site Request Forgery (CSRF) vulnerability in the PHP page, which causes the attacker to forge a link to trick him to click on a malicious link or visit a page containing attack code, and send a request to the server (corresponding to the identity authentication...

8.8CVSS

8.9AI Score

0.001EPSS

2022-09-07 03:15 PM

cve

CVE-2022-37731

ftcms 2.1 poster.PHP has a XSS vulnerability. The attacker inserts malicious JavaScript code into the web page, causing the user / administrator to trigger malicious code when...

6.1CVSS

6AI Score

0.001EPSS

2022-09-07 03:15 PM

cve

CVE-2022-30063

ftcms <=2.1 was discovered to be vulnerable to code execution attacks...

9.8CVSS

9.6AI Score

0.003EPSS

2022-05-11 07:15 PM

cve

CVE-2022-30062

ftcms <=2.1 was discovered to be vulnerable to Arbitrary File Read via...

6.5CVSS

6.5AI Score

0.001EPSS

2022-05-11 06:15 PM

cve

CVE-2022-30061

ftcms <=2.1 was discovered to be vulnerable to directory traversal attacks via the parameter...

6.5CVSS

6.5AI Score

0.001EPSS

2022-05-11 06:15 PM

cve

CVE-2022-30060

ftcms <=2.1 was discovered to be vulnerable to Arbitrary File Write via...

8.8CVSS

8.6AI Score

0.001EPSS

2022-05-11 06:15 PM