CVE-2024-36549 | idcCMS 1.35 vpsCompany_deal.php cross-site request forgery

Posted by Angelo Barbosa | Jun 4, 2024 | CVE

A vulnerability was found in idcCMS 1.35. It has been rated as problematic. This issue affects some unknown processing of the file /admin/vpsCompany_deal.php?mudi=rev&nohrefStr=close. The manipulation leads to cross-site request forgery.

The identification of this vulnerability is CVE-2024-36549. The attack may be initiated remotely. There is no exploit available.

CVE-2024-36549 | idcCMS 1.35 vpsCompany_deal.php cross-site request forgery

Related Posts

CVE-2024-0558 | DedeBIZ 6.3.0 makehtml_freelist_action.php startid sql injection

CVE-2024-26815 | Linux Kernel up to 6.1.82/6.6.22/6.7.10/6.8.1 lib/dump_stack.c taprio_parse_tc_entry out-of-bounds

CVE-2024-37934 | Saturday Drive Ninja Forms Plugin up to 3.8.4 on WordPress code injection

CVE-2023-48622 | Adobe Experience Manager AEM Cloud Service/6.5.18.0 cross site scripting (APSB23-72)