MengYang

8 exploits Active since Dec 2023
CVE-2023-49375 WRITEUP HIGH WORKING POC
JFinalCMS 5.0.0 - Cross-Site Request Forgery via Friendship Link Update Endpoint
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/friend_link/update.
CVSS 8.8
CVE-2023-49376 WRITEUP HIGH WORKING POC
JFinalCMS 5.0.0 - Cross-Site Request Forgery via Tag Deletion Endpoint
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/tag/delete.
CVSS 8.8
CVE-2023-49377 WRITEUP HIGH WORKING POC
JFinalCMS 5.0.0 - Cross-Site Request Forgery via /admin/tag/update
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/tag/update.
CVSS 8.8
CVE-2023-49378 WRITEUP HIGH WORKING POC
JFinalCMS 5.0.0 - Cross-Site Request Forgery via /admin/form/save
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/form/save.
CVSS 8.8
CVE-2023-49379 WRITEUP HIGH WORKING POC
JFinalCMS 5.0.0 - Cross-Site Request Forgery via Friend Link Save Endpoint
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via the component /admin/friend_link/save.
CVSS 8.8
CVE-2023-49380 WRITEUP HIGH WORKING POC
JFinalCMS 5.0.0 - Cross-Site Request Forgery via Friend Link Deletion Endpoint
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/friend_link/delete.
CVSS 8.8
CVE-2023-49381 WRITEUP HIGH WORKING POC
JFinalCMS 5.0.0 - Cross-Site Request Forgery via /admin/div/update
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/div/update.
CVSS 8.8
CVE-2023-49383 WRITEUP HIGH WORKING POC
JFinalCMS 5.0.0 - Cross-Site Request Forgery via Tag Save Endpoint
JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/tag/save.
CVSS 8.8