Skip to main content
CVE-2024-22819 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/email/email_templets_update. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2024-22818 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerbility via /system/site/filterKeyword_save. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2024-22817 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/email/email_conf_updagte. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2024-22603 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/links/add_link. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2024-22699 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/admin/update_group_save. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.4%
CVE-2024-22593 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/admin/add_group_save. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2024-22592 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/user/group_update. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2024-22591 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/user/group_save. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2024-22568 HIGH POC This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/score/del. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.3%
CVE-2024-22416 HIGH POC PATCH This Week

pyLoad is a free and open-source Download Manager written in pure Python. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python CSRF Pyload Ng
NVD GitHub
CVSS 3.1
8.8
EPSS
0.9%
CVE-2024-0693 HIGH POC This Week

A vulnerability classified as problematic was found in EFS Easy File Sharing FTP 2.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Easy File Sharing Ftp Server
NVD VulDB
CVSS 3.1
7.5
EPSS
1.3%
CVE-2024-0651 HIGH POC This Week

A vulnerability was found in PHPGurukul Company Visitor Management System 1.0. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Company Visitor Management System
NVD VulDB
CVSS 3.1
7.2
EPSS
0.6%
CVE-2024-22601 HIGH This Week

FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/score/scorerule_save. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Flycms
NVD GitHub
CVSS 3.1
8.8
EPSS
0.2%
CVE-2024-0654 HIGH This Week

A vulnerability, which was classified as problematic, was found in DeepFaceLab pretrained DF.wf.288res.384.92.72.22. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Deserialization Deepfacelab
NVD GitHub VulDB
CVSS 3.1
7.8
EPSS
0.3%
CVE-2024-0580 HIGH This Week

Omission of user-controlled key authorization in the IDMSistemas platform, affecting the QSige product. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Sinergia
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2024-0669 HIGH PATCH This Week

A Cross-Frame Scripting vulnerability has been found on Plone CMS affecting verssion below 6.0.5. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Plone
NVD
CVSS 3.1
7.1
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy