Thirtypenny77/cms2

Releases0

Stars1

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-39156 ↗	Jun 27, 2024Thursday, 27 June 2024, 14:15	3.8 LOW	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/keyWord_deal.php?mudi=add.
CVE-2024-39157 ↗	Jun 27, 2024Thursday, 27 June 2024, 14:15	3.8 LOW	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ipRecord_deal.php?mudi=del&dataType=&dataID=1.
CVE-2024-39158 ↗	Jun 27, 2024Thursday, 27 June 2024, 14:15	8.8 HIGH	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/userSys_deal.php?mudi=infoSet.
CVE-2024-39153 ↗	Jun 27, 2024Thursday, 27 June 2024, 14:15	4.7 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/info_deal.php?mudi=del&dataType=news&dataTypeCN.
CVE-2024-39154 ↗	Jun 27, 2024Thursday, 27 June 2024, 14:15	8.8 HIGH	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/keyWord_deal.php?mudi=del&dataType=word&dataTypeCN.
CVE-2024-39155 ↗	Jun 27, 2024Thursday, 27 June 2024, 14:15	6.8 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ipRecord_deal.php?mudi=add.