漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
Multiple cross-site request forgery (CSRF) vulnerabilities in Quick.CMS 2.4 and Quick.CMS.Lite 2.4 allow remote attackers to hijack the authentication of the administrator for requests that (1) delete web pages via a p-delete action to admin.php, and possibly (2) delete products or (3) delete orders via unspecified vectors. NOTE: some of these details are obtained from third party information.
漏洞信息
N/A
漏洞
N/A
漏洞
Quick.CMS和Quick.CMS.Lite多个跨站请求伪造漏洞
漏洞信息
Quick.CMS 2.4以及Quick.CMS.Lite 2.4版本中存在多个跨站请求伪造漏洞,远程攻击者可以劫持管理员对以下情况的验证请求:(1)通过一个对admin.php的p-delete操作删除WEB网页,以及(2)删除产品或者(3)通过未明向量删除指令。
漏洞信息
N/A
漏洞
N/A