tang-0717/cms

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-24468 ↗	Feb 5, 2024Monday, 5 February 2024, 16:15	8.8 HIGH	—
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the add_customblock.php.
CVE-2024-24469 ↗	Feb 5, 2024Monday, 5 February 2024, 16:15	8.8 HIGH	—
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the delete_post .php.
CVE-2024-24470 ↗	Feb 2, 2024Friday, 2 February 2024, 16:15	8.8 HIGH	—
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the update_post.php component.