Jfinalcms Project: >> Jfinalcms >> 5.0.0 Security Vulnerabilities
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/nav/update.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-12-05
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via admin/nav/delete.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-12-05
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/slide/delete.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-12-05
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/slide/update.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-12-05
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/friend_link/update.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-12-05
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/tag/delete.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-12-05
An issue in the component /common/DownController.java of JFinalCMS v5.0.0 allows attackers to execute a directory traversal.
CVSS Score
5.3
EPSS Score
0.916
Published
2023-09-19
Page 4