Shardulm94

#10598de 53,639
26.1CVSS total
Vulnerabilidades · 3
Alta
2
Crítica
1
PT-2017-17967
8.8
2017-04-14
Flatcore · Flatcore · CVE-2017-7877
**Name of the Vulnerable Software and Affected Versions** flatCore version 1.4.6 **Description** A CSRF issue allows remote attackers to modify CMS configurations. **Recommendations** For flatCore version 1.4.6, update to a version that includes a fix for this issue, if available. If no specific fix is provided for version 1.4.6, consider implementing additional security measures to prevent CSRF attacks, such as validating request tokens.
PT-2017-17968
9.8
2017-04-14
Flatcore · Flatcore · CVE-2017-7878
**Name of the Vulnerable Software and Affected Versions** flatCore version 1.4.6 **Description** The issue allows an attacker to read and write to the users database through a SQL Injection vulnerability. **Recommendations** For flatCore version 1.4.6, update to a newer version that contains a fix for this issue.
PT-2017-17969
7.5
2017-04-14
Flatcore · Flatcore · CVE-2017-7879
**Name of the Vulnerable Software and Affected Versions** flatCore version 1.4.6 **Description** The issue allows an attacker to read the content database due to a SQL Injection vulnerability. **Recommendations** For flatCore version 1.4.6, update to a newer version that contains a fix for this issue, however, at the moment, there is no information about a newer version that contains a fix for this vulnerability.