ftcms <=2.1 was discovered to be vulnerable to Arbitrary File Write via admin/controllers/tp.php
8.8CVSS
8.6AI Score
0.001EPSS
ftcms <=2.1 was discovered to be vulnerable to directory traversal attacks via the parameter tp.
6.5CVSS
6.5AI Score
0.001EPSS
6.5CVSS
6.5AI Score
0.001EPSS
9.8CVSS
9.6AI Score
0.003EPSS
In ftcms 2.1, there is a Cross Site Request Forgery (CSRF) vulnerability in the PHP page, which causes the attacker to forge a link to trick him to click on a malicious link or visit a page containing attack code, and send a request to the server (corresponding to the identity authentication inform...
8.8CVSS
8.9AI Score
0.001EPSS
ftcms 2.1 poster.PHP has a XSS vulnerability. The attacker inserts malicious JavaScript code into the web page, causing the user / administrator to trigger malicious code when accessing.
6.1CVSS
6AI Score
0.001EPSS