CVE-2024-35012 | idcCMS 1.35 infoType_deal.php cross-site request forgery

Posted by Angelo Barbosa | May 14, 2024 | CVE

A vulnerability was found in idcCMS 1.35 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/infoType_deal.php?mudi=add&nohrefStr=close. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2024-35012. The attack may be launched remotely. There is no exploit available.

CVE-2024-35012 | idcCMS 1.35 infoType_deal.php cross-site request forgery

Related Posts

CVE-2024-23121 | Autodesk AutoCAD/Advance Steel/Civil 3D MODEL File libodxdll.dll out-of-bounds write

CVE-2024-42019 | Veeam ONE up to 12.1.0.3208 Reporter Service Privilege Escalation (kb4649)

CVE-2024-36844 | libmodbus 3.1.6 Message use after free

CVE-2024-6045 | D-Link R15 prior 1.10.01 Telnet Service backdoor