bearman113/1.md

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-35551 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	4.3 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoWeb_deal.php?mudi=add.
CVE-2024-35552 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	8.8 HIGH	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoMove_deal.php?mudi=del&dataType=logo&dataTypeCN.
CVE-2024-35553 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	8.3 HIGH	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoMove_deal.php?mudi=add&nohrefStr=close.
CVE-2024-35554 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	5.4 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoWeb_deal.php?mudi=del&dataType=newsWeb&dataTypeCN.
CVE-2024-35555 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	6.3 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/share_switch.php?mudi=switch&dataType=newsWeb&fieldName=state&fieldName2=state&tabName=infoWeb&dataID=40.
CVE-2024-35556 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	8.8 HIGH	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/vpsSys_deal.php?mudi=infoSet.
CVE-2024-35557 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	5.5 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/vpsApi_deal.php?mudi=rev&nohrefStr=close.
CVE-2024-35558 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	8.8 HIGH	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ca_deal.php?mudi=rev&nohrefStr=close.
CVE-2024-35559 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	8.8 HIGH	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoMove_deal.php?mudi=rev&nohrefStr=close.
CVE-2024-35560 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	4.3 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ca_deal.php?mudi=del&dataType=&dataTypeCN.
CVE-2024-35561 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	5.4 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ca_deal.php?mudi=add&nohrefStr=close.
CVE-2024-35550 ↗	May 22, 2024Wednesday, 22 May 2024, 14:15	6.3 MEDIUM	—
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoWeb_deal.php?mudi=rev.