CVE-2024-46485 | dingfanzu CMS 1.0 doAdminAction.php cross-site request forgery

Posted by Angelo Barbosa | Sep 25, 2024 | CVE

A vulnerability, which was classified as problematic, was found in dingfanzu CMS 1.0. This affects an unknown part of the file /admin/doAdminAction.php?act=addCate. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-46485. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-46485 | dingfanzu CMS 1.0 doAdminAction.php cross-site request forgery

Related Posts

CVE-2023-32095 | Milan Dinić Rename Media Files Plugin up to 1.0.1 on WordPress code injection

CVE-2023-6185 | Document Foundation LibreOffice up to 7.5.8/7.6.2 GStreamer input validation

CVE-2024-1314 | Kinto Attachment prior 6.4.0 Attachments information disclosure

CVE-2024-8382 | Mozilla Firefox up to 129.x Internal Browser Event Interface information disclosure