Описание
An issue was discovered in idreamsoft iCMS through 7.0.7. CSRF exists in admincp.php, as demonstrated by adding an article via an app=article&do=save&frame=iPHP request.
Ссылки
- ExploitPatchThird Party Advisory
- ExploitPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.0.7 (включая)
cpe:2.3:a:icmsdev:icms:*:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00138
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
An issue was discovered in idreamsoft iCMS through 7.0.7. CSRF exists in admincp.php, as demonstrated by adding an article via an app=article&do=save&frame=iPHP request.
EPSS
Процентиль: 34%
0.00138
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-352