CVE-2024-35475 | OpenKM up to 6.3.11 /admin/DatabaseQuery cross-site request forgery

Posted by Angelo Barbosa | May 22, 2024 | CVE

A vulnerability was found in OpenKM up to 6.3.11. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/DatabaseQuery. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2024-35475. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-35475 | OpenKM up to 6.3.11 /admin/DatabaseQuery cross-site request forgery

Related Posts

CVE-2024-30551 | Toast Plugins Sticky Anything Plugin up to 2.1.5 on WordPress cross site scripting

CVE-2023-6700 | Cookie Information Plugin up to 2.0.22 on WordPress Options Update improper authentication

CVE-2023-6231 | Canon Satera LBP670C up to 03.07 WSD Probe Request Process out-of-bounds write

CVE-2023-51633 | Centreon sysName cross site scripting