CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-24524

Cross Site Request Forgery (CSRF) vulnerability in flusity-CMS v.2.33, allows remote attackers to execute arbitrary code via the add_menu.php component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.8%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/harryrabbit5651/cms/blob/main/1.md
https://github.com/harryrabbit5651/cms/blob/main/1.md

Products affected by CVE-2024-24524

Flusity » Flusity » Version: 2.33

cpe:2.3:a:flusity:flusity:2.33

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-24524

Products

Pricing

Contact Us