JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/tag/delete.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Jfinalcms Project |
|
No data.
No data.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2023-3307 | JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/tag/delete. |
 Github GHSA |
GHSA-w492-7g9m-j2ww | Cross-Site Request Forgery in JFinalCMS |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-02T21:53:45.226Z
Reserved: 2023-11-27T00:00:00
Link: CVE-2023-49376
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-12-05T15:15:07.963
Modified: 2024-11-21T08:33:18.627
Link: CVE-2023-49376
Redhat
No data.
OpenCVE Enrichment
No data.