Vulnerabilities > Ftcms

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-07	CVE-2022-37730	Cross-Site Request Forgery (CSRF) vulnerability in Ftcms 2.1 In ftcms 2.1, there is a Cross Site Request Forgery (CSRF) vulnerability in the PHP page, which causes the attacker to forge a link to trick him to click on a malicious link or visit a page containing attack code, and send a request to the server (corresponding to the identity authentication information) as the victim without the victim's knowledge. network low complexity ftcms CWE-352	8.8
2022-09-07	CVE-2022-37731	Cross-site Scripting vulnerability in Ftcms 2.1 ftcms 2.1 poster.PHP has a XSS vulnerability. network low complexity ftcms CWE-79	6.1
2022-05-11	CVE-2022-30063	Unspecified vulnerability in Ftcms 2.1 ftcms <=2.1 was discovered to be vulnerable to code execution attacks . network low complexity ftcms critical	9.8
2022-05-11	CVE-2022-30060	Unspecified vulnerability in Ftcms 2.1 ftcms <=2.1 was discovered to be vulnerable to Arbitrary File Write via admin/controllers/tp.php network low complexity ftcms	8.8
2022-05-11	CVE-2022-30061	Path Traversal vulnerability in Ftcms 2.1 ftcms <=2.1 was discovered to be vulnerable to directory traversal attacks via the parameter tp. network low complexity ftcms CWE-22	6.5
2022-05-11	CVE-2022-30062	Path Traversal vulnerability in Ftcms 2.1 ftcms <=2.1 was discovered to be vulnerable to Arbitrary File Read via tp.php network low complexity ftcms CWE-22	6.5

Vulnerabilities > Ftcms {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Ftcms"}]}