CVE-2024-48758 | dingfanzu CMS 1.0 doAdminAction.php addPro cross-site request forgery

Inserito da Angelo Barbosa | Ott 16, 2024 | CVE

A vulnerability has been found in dingfanzu CMS 1.0 and classified as problematic. This vulnerability affects unknown code of the file doAdminAction.php. The manipulation of the argument addPro leads to cross-site request forgery.

This vulnerability was named CVE-2024-48758. The attack can be initiated remotely. There is no exploit available.

CVE-2024-48758 | dingfanzu CMS 1.0 doAdminAction.php addPro cross-site request forgery

Post correlati

CVE-2024-38483 | Dell Client Platform BIOS prior 1.26.0/1.35.0/2.32.0 input validation (dsa-2024-260)

CVE-2024-31083 | X.org X11 Server up to 21.1.11 ProcRenderAddGlyphs use after free

CVE-2024-38399 | Qualcomm Snapdragon Auto up to WSA8835 User Packet use after free

CVE-2024-1347 | GitLab Community Edition/Enterprise Edition up to 16.9.5/16.10.3/16.11.0 Email Address access control (Issue 441093)