CVE-2024-4172 | idcCMS 1.35 admin_cl.php cross-site request forgery

Inserito da Angelo Barbosa | Apr 25, 2024 | CVE

A vulnerability classified as problematic was found in idcCMS 1.35. Affected by this vulnerability is an unknown functionality of the file /admin/admin_cl.php?mudi=revPwd. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-4172. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-4172 | idcCMS 1.35 admin_cl.php cross-site request forgery

Post correlati

CVE-2024-0009 | Palo Alto PAN-OS/Prisma Access/Cloud NGFW VPN Connection unknown vulnerability

CVE-2024-43413 | Xibo CMS up to 4.0.x Data Entry Page cross site scripting (GHSA-pfxp-vxh7-2h9f)

CVE-2024-37008 | Autodesk Revit up to 2022.1.6/2023.1.4/2024.2.1/2025 DWG File stack-based overflow

CVE-2024-7756 | Lenovo 10w Laptop BIOS UEFI Shell debug code