CVE-2024-46600 | dingfanzu CMS 1.0 doAdminAction.php cross-site request forgery

Posted by Angelo Barbosa | Sep 25, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in dingfanzu CMS 1.0. Affected by this issue is some unknown functionality of the file /admin/doAdminAction.php?act=delCate&id=31. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2024-46600. The attack may be launched remotely. There is no exploit available.

CVE-2024-46600 | dingfanzu CMS 1.0 doAdminAction.php cross-site request forgery

Related Posts

CVE-2023-33219 | IDEMIA SIGMA Lite & Lite + Retrofit Validation Command stack-based overflow

CVE-2023-36696 | Microsoft Windows up to Server 2022 23H2 Cloud Files Mini Filter Driver Local Privilege Escalation

CVE-2024-7385 | Simple HTML Sitemap Plugin up to 3.1 on WordPress sql injection

CVE-2024-35699 | HasThemes HT Feed Plugin up to 1.2.8 on WordPress cross site scripting