CVE-2024-36670 | idcCMS 1.35 vpsClass_deal.php cross-site request forgery

Inserito da Angelo Barbosa | Giu 5, 2024 | CVE

A vulnerability was found in idcCMS 1.35 and classified as problematic. Affected by this issue is some unknown functionality of the file admin/vpsClass_deal.php?mudi=del. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2024-36670. The attack may be launched remotely. There is no exploit available.

CVE-2024-36670 | idcCMS 1.35 vpsClass_deal.php cross-site request forgery

Post correlati

CVE-2024-21886 | X.org X11 Server DisableDevice heap-based overflow

CVE-2024-47963 | Delta Electronics CNCSoft-G2 2.1.0.10 out-of-bounds write (icsa-24-284-21)

CVE-2023-24590 | Gallagher Controller 6000 prior 8.60.231116a Web Interface format string

CVE-2023-24460 | Intel GPA Software Installer prior 2023.3 default permission (intel-sa-00831)