Vulnerabilities (CVE)

Filtered by vendor Flycms Project Subscribe

Filtered by product Flycms

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-52074	1 Flycms Project	1 Flycms	2024-01-11	N/A	8.8 HIGH
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component system/site/webconfig_updagte.
CVE-2023-52073	1 Flycms Project	1 Flycms	2024-01-11	N/A	8.8 HIGH
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /system/site/config_footer_updagte.
CVE-2023-52072	1 Flycms Project	1 Flycms	2024-01-11	N/A	8.8 HIGH
FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /system/site/userconfig_updagte.
CVE-2020-19613	1 Flycms Project	1 Flycms	2021-04-06	5.0 MEDIUM	7.5 HIGH
Server Side Request Forgery (SSRF) vulnerability in saveUrlAs function in ImagesService.java in sunkaifei FlyCMS version 20190503.