Vulnerabilities > Flusity

DATE	CVE	VULNERABILITY TITLE	RISK
2024-03-04	CVE-2024-27668	Cross-site Scripting vulnerability in Flusity 2.33 Flusity-CMS v2.33 is affected by: Cross Site Scripting (XSS) in 'Custom Blocks.' network low complexity flusity CWE-79	6.1
2024-02-22	CVE-2024-26350	Cross-Site Request Forgery (CSRF) vulnerability in Flusity 2.33 flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/update_contact_form_settings.php network low complexity flusity CWE-352	8.8
2024-02-22	CVE-2024-26489	Cross-site Scripting vulnerability in Flusity 2.33 A cross-site scripting (XSS) vulnerability in the Addon JD Flusity 'Social block links' module of flusity-CMS v2.33 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Profile Name text field. network low complexity flusity CWE-79	6.1
2024-02-11	CVE-2024-25417	Cross-Site Request Forgery (CSRF) vulnerability in Flusity 2.33 flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/add_translation.php. network low complexity flusity CWE-352	8.8
2024-02-11	CVE-2024-25418	Cross-Site Request Forgery (CSRF) vulnerability in Flusity 2.33 flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/delete_menu.php. network low complexity flusity CWE-352	8.8
2024-02-11	CVE-2024-25419	Cross-Site Request Forgery (CSRF) vulnerability in Flusity 2.33 flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/update_menu.php. network low complexity flusity CWE-352	8.8
2024-02-05	CVE-2024-24468	Cross-Site Request Forgery (CSRF) vulnerability in Flusity 2.33 Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the add_customblock.php. network low complexity flusity CWE-352	8.8
2024-02-05	CVE-2024-24469	Cross-Site Request Forgery (CSRF) vulnerability in Flusity 2.33 Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the delete_post .php. network low complexity flusity CWE-352	8.8
2024-02-02	CVE-2024-24470	Cross-Site Request Forgery (CSRF) vulnerability in Flusity 2.33 Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the update_post.php component. network low complexity flusity CWE-352	8.8
2024-02-02	CVE-2024-24524	Cross-Site Request Forgery (CSRF) vulnerability in Flusity 2.33 Cross Site Request Forgery (CSRF) vulnerability in flusity-CMS v.2.33, allows remote attackers to execute arbitrary code via the add_menu.php component. network low complexity flusity CWE-352	8.8

Vulnerabilities > Flusity {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Flusity"}]}

Vulnerabilities > Flusity