Vulnerabilities > Frogcms Project > Frogcms > High

DATE CVE VULNERABILITY TITLE RISK
2024-08-12 CVE-2024-42631 Cross-Site Request Forgery (CSRF) vulnerability in Frogcms Project Frogcms 0.9.5
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/layout/edit/1.
network
low complexity
frogcms-project CWE-352
8.8
8.8
2024-08-12 CVE-2024-42632 Cross-Site Request Forgery (CSRF) vulnerability in Frogcms Project Frogcms 0.9.5
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/add.
network
low complexity
frogcms-project CWE-352
8.8
8.8
2021-09-23 CVE-2021-26794 Unrestricted Upload of File with Dangerous Type vulnerability in Frogcms Project Frogcms 0.9.5
Privilege escalation in 'upload.php' in FrogCMS SentCMS v0.9.5 allows attacker to execute arbitrary code via crafted php file.
network
low complexity
frogcms-project CWE-434
7.5
7.5