xiaolanjing0/cms

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-27680 ↗	Mar 4, 2024Monday, 4 March 2024, 15:15	6.1 MEDIUM	—
Flusity-CMS v2.33 is vulnerable to Cross Site Scripting (XSS) in the "Contact form."
CVE-2024-26445 ↗	Feb 22, 2024Thursday, 22 February 2024, 14:15	6.1 MEDIUM	—
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/delete_place.php