High severity8.8NVD Advisory· Published Sep 7, 2022· Updated Jun 17, 2026
CVE-2022-37730
CVE-2022-37730
Description
In ftcms 2.1, there is a Cross Site Request Forgery (CSRF) vulnerability in the PHP page, which causes the attacker to forge a link to trick him to click on a malicious link or visit a page containing attack code, and send a request to the server (corresponding to the identity authentication information) as the victim without the victim's knowledge.
Affected products
2Patches
Vulnerability mechanics
References
1- github.com/whiex/webvue/blob/gh-pages/Ftcms%20CSRF.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.