Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-3hx8-jcjc-x9xm

Опубликовано: 22 фев. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 5.3
CVSS3: 4.3

Описание

A vulnerability, which was classified as problematic, was found in OFCMS 1.1.3. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

A vulnerability, which was classified as problematic, was found in OFCMS 1.1.3. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Ссылки

EPSS

Процентиль: 29%
0.00108
Низкий

5.3 Medium

CVSS4

4.3 Medium

CVSS3

CVE ID

CVE-2025-1557

Дефекты

CWE-352

Связанные уязвимости

nvd логотип

CVE-2025-1557

CVSS3: 4.3
nvd
12 месяцев назад

A vulnerability, which was classified as problematic, was found in OFCMS 1.1.3. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

fstec логотип

BDU:2026-00279

CVSS3: 7.3
fstec
12 месяцев назад

Уязвимость системы управления контентом на основе технологии Java OFCMS, связаная с подделкой межсайтовых запросов, позволяющая нарушителю осуществить CSRF-атаку

EPSS

Процентиль: 29%
0.00108
Низкий

5.3 Medium

CVSS4

4.3 Medium

CVSS3

CVE ID

CVE-2025-1557

Дефекты

CWE-352