Cross-Site Request Forgery Vulnerability in 07FLYCMS Web Application
CVE-2024-51157

Currently unrated

Key Information:

Vendor: 07FLYCMS
Status: 07FLYCMS
Vendor: CVE Published:; 8 November 2024

What is CVE-2024-51157?

The 07FLYCMS web application version 1.3.9 is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability, allowing unauthorized users to perform actions on behalf of authenticated users. This security flaw exists within the component accessed via http://erp.07fly.net:80/oa/OaSchedule/add.html, potentially leading to unauthorized modifications or data access within the application.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://github.com/xiaoyunzhui/cms/blob/main/2/readme.md

Timeline

Vulnerability published
Nov 8, 2024
Vulnerability Reserved
Oct 28, 2024

JSON

07FLYCMS

What is CVE-2024-51157?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.