CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-45264

A cross-site request forgery (CSRF) vulnerability in the admin panel in SkySystem Arfa-CMS before 5.1.3124 allows remote attackers to add a new administrator, leading to escalation of privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.9%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/TheHermione/CVE-2024-45264
https://skyss.ru

Products affected by CVE-2024-45264

Skyss » Arfa-Cms » Version: Any

cpe:2.3:a:skyss:arfa-cms:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-45264

Products

Pricing

Contact Us