CVE Details: CVE-2024-48758

Description

dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the addPro parameter of the component doAdminAction.php which allows a remote attacker to execute arbitrary code

Published Date: 2024-10-16
Last Modified Date: 2024-10-16
Severity:
CVSS v3 Score:
CWE ID:
Attack Vector:
Attack Complexity:
Privileges Required:
User Interaction:
Scope:
Confidentiality Impact:
Integrity Impact:
Availability Impact:

Back to CVE List