CVE-2022-38329

An issue was discovered in Shopxian CMS 3.0.0. There is a CSRF vulnerability that can delete the specified column via index.php/contents-admin_cat-finderdel-model-ContentsCat.html?id=17.
Configurations

Configuration 1 (hide)

cpe:2.3:a:shopxian:shopxian_cms:3.0.0:*:*:*:*:*:*:*

History

21 Nov 2024, 07:16

Type Values Removed Values Added
References () https://albert5888.github.io/posts/CVE-2022-38329/ - () https://albert5888.github.io/posts/CVE-2022-38329/ -
References () https://github.com/zhangqiquan/shopxian_cms/issues/4 - Exploit, Issue Tracking, Third Party Advisory () https://github.com/zhangqiquan/shopxian_cms/issues/4 - Exploit, Issue Tracking, Third Party Advisory

Information

Published : 2022-09-13 21:15

Updated : 2024-11-21 07:16


NVD link : CVE-2022-38329

Mitre link : CVE-2022-38329

CVE.ORG link : CVE-2022-38329


JSON object : View

Products Affected

shopxian

  • shopxian_cms
CWE
CWE-352

Cross-Site Request Forgery (CSRF)