Shodan
Vulnerabilities
Vulnerable Software
Flusity:  Security Vulnerabilities
CVE-2024-26352
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/add_places.php
CVSS Score
8.8
EPSS Score
0.001
Published
2024-02-22
CVE-2024-26445
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/delete_place.php
CVSS Score
6.1
EPSS Score
0.001
Published
2024-02-22
CVE-2024-23094
Flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /cover/addons/info_media_gallery/action/edit_addon_post.php
CVSS Score
8.8
EPSS Score
0.001
Published
2024-02-22
CVE-2024-26489
A cross-site scripting (XSS) vulnerability in the Addon JD Flusity 'Social block links' module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Profile Name text field.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-02-22
CVE-2024-26490
A cross-site scripting (XSS) vulnerability in the Addon JD Simple module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-02-22
CVE-2024-26491
A cross-site scripting (XSS) vulnerability in the Addon JD Flusity 'Media Gallery with description' module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Gallery name text field.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-02-22
CVE-2024-25502
Directory Traversal vulnerability in flusity CMS v.2.4 allows a remote attacker to execute arbitrary code and obtain sensitive information via the download_backup.php component.
CVSS Score
9.8
EPSS Score
0.1
Published
2024-02-15
CVE-2024-25417
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/add_translation.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-02-11
CVE-2024-25418
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/delete_menu.php.
CVSS Score
8.8
EPSS Score
0.002
Published
2024-02-11
CVE-2024-25419
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/update_menu.php.
CVSS Score
8.8
EPSS Score
0.002
Published
2024-02-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved