CVE-2014-8771

X3 CMS 0.5.1 and 0.5.1.1 - Cross-Site Request Forgery in Admin Area

Title source: llm
STIX 2.1

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the admin area in X3 CMS 0.5.1 and 0.5.1.1 allow remote attackers to hijack the authentication of administrators via unspecified vectors.

References (2)

Core 2

Scores

EPSS 0.0061
EPSS Percentile 45.1%

Details

CWE
CWE-352
Status published
Products (2)
x3cms/x3_cms 0.5.1
x3cms/x3_cms 0.5.1.1
Published Dec 03, 2014
Tracked Since Feb 18, 2026