CVE-2024-35109 | idcCMS 1.35 homePro_deal.php cross-site request forgery

Inserito da Angelo Barbosa | Mag 15, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in idcCMS 1.35. Affected by this issue is some unknown functionality of the file /homePro_deal.php?mudi=add&nohrefStr=close. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2024-35109. The attack may be launched remotely. There is no exploit available.

CVE-2024-35109 | idcCMS 1.35 homePro_deal.php cross-site request forgery

Post correlati

CVE-2022-28656 | Canonical Apport up to 2.20.x is_closing_session resource consumption (USN-5427-1)

CVE-2024-0054 | AXIS OS 6.50/11.8 VAPIX API local_list.cgi resource consumption

CVE-2023-51801 | Simple Student Attendance System 1.0 student_form.php id sql injection

CVE-2024-36677 | Login as Customer Pro Module 1.2.7 on PrestaShop access control