VYPR
Vendor

FlyCms

Products
1
CVEs
13
Across products
13
Status
Private

Products

1

Recent CVEs

13
  • CVE-2024-22819HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/email/email_templets_update.

  • CVE-2024-22818HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerbility via /system/site/filterKeyword_save

  • CVE-2024-22817HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/email/email_conf_updagte

  • CVE-2024-22603HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/links/add_link

  • CVE-2024-22601HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/score/scorerule_save

  • CVE-2024-22593HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/admin/add_group_save

  • CVE-2024-22592HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/user/group_update

  • CVE-2024-22591HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/user/group_save.

  • CVE-2024-22568HigJan 18, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/score/del.

  • CVE-2023-52072HigJan 8, 2024
    risk 0.57cvss 8.8epss 0.00

    FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /system/site/userconfig_updagte.

  • CVE-2020-36065HigMay 8, 2023
    risk 0.57cvss 8.8epss 0.00

    Cross Site Request Forgery (CSRF) vulnerability in FlyCms 1.0 allows attackers to add arbitrary administrator accounts via system/admin/admin_save.

  • CVE-2024-22549MedJan 18, 2024
    risk 0.35cvss 5.4epss 0.00

    FlyCms 1.0 is vulnerable to Cross Site Scripting (XSS) in the email settings of the website settings section.

  • CVE-2024-22548MedJan 18, 2024
    risk 0.35cvss 5.4epss 0.00

    FlyCms 1.0 is vulnerable to Cross Site Scripting (XSS) in the system website settings website name section.