Vulnerabilities > Ftcms > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-07 | CVE-2022-37730 | Cross-Site Request Forgery (CSRF) vulnerability in Ftcms 2.1 In ftcms 2.1, there is a Cross Site Request Forgery (CSRF) vulnerability in the PHP page, which causes the attacker to forge a link to trick him to click on a malicious link or visit a page containing attack code, and send a request to the server (corresponding to the identity authentication information) as the victim without the victim's knowledge. | 8.8 |
| 2022-05-11 | CVE-2022-30060 | Unspecified vulnerability in Ftcms 2.1 ftcms <=2.1 was discovered to be vulnerable to Arbitrary File Write via admin/controllers/tp.php | 8.8 |