CVE-2024-48291 | dingfanzu CMS 1.0 doAdminAction.php?act=editAdmin&id=17 cross-site request forgery

Inserito da Angelo Barbosa | Ott 28, 2024 | CVE

A vulnerability, which was classified as problematic, was found in dingfanzu CMS 1.0. Affected is an unknown function of the file /admin/doAdminAction.php?act=editAdmin&id=17. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-48291. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-48291 | dingfanzu CMS 1.0 doAdminAction.php?act=editAdmin&id=17 cross-site request forgery

Post correlati

CVE-2024-42135 | Linux Kernel up to 6.6.38/6.9.8 vhost_task Privilege Escalation (abe067dc3a66/dec987fe2df6/db5247d9bf5c)

CVE-2024-8578 | TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 /cgi-bin/cstecgi.cgi setWiFiMeshName device_name buffer overflow

CVE-2024-22023 | Ivanti Connect Secure/Policy Secure SAML resource consumption

CVE-2024-1573 | Mitsubishi Electric ICONICS/AlarmWorX Multimedia/MobileHMI GENESIS64 Automatic Login improper authentication (icsa-24-184-03)