Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In ftcms 2.1, there is a Cross Site Request Forgery (CSRF) vulnerability in the PHP page, which causes the attacker to forge a link to trick him to click on a malicious link or visit a page containing attack code, and send a request to the server (corresponding to the identity authentication information) as the victim without the victim's knowledge.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ftcms 跨站请求伪造漏洞
Vulnerability Description
ftcms是ftcms公司的一个内容管理系统。 ftcms 2.1版本存在安全漏洞,该漏洞源于其News.php页面允许攻击者伪造一个链接,并欺骗他人点击恶意链接或访问包含攻击代码的页面,可以在受害者不知情的情况下以受害者的身份向服务器发送请求(对应身份验证信息),从而完成非法操作(如转移、 加密更改等)。
CVSS Information
N/A
Vulnerability Type
N/A