Flycms Project: >> Flycms >> 1.0 Security Vulnerabilities
FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/user/group_save.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-01-18
FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/user/group_update
CVSS Score
8.8
EPSS Score
0.001
Published
2024-01-18
FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/admin/add_group_save
CVSS Score
8.8
EPSS Score
0.001
Published
2024-01-18
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /system/site/userconfig_updagte.
CVSS Score
8.8
EPSS Score
0.002
Published
2024-01-08
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /system/site/config_footer_updagte.
CVSS Score
8.8
EPSS Score
0.002
Published
2024-01-08
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component system/site/webconfig_updagte.
CVSS Score
8.8
EPSS Score
0.002
Published
2024-01-08
FlyCms through abbaa5a allows XSS via the permission management feature.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-01-01
Cross Site Request Forgery (CSRF) vulnerability in FlyCms 1.0 allows attackers to add arbitrary administrator accounts via system/admin/admin_save.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-05-08
Page 2