PT-2025-7531 · Ofcms · Ofcms
Caigo
·
Published
2025-02-22
·
Updated
2025-06-04
·
CVE-2025-1557
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
OFCMS version 1.1.3
Description
A vulnerability was found in OFCMS, which can be exploited to perform cross-site request forgery. The issue is related to an unknown function and can be launched remotely. The exploit has been disclosed to the public and may be used.
Recommendations
For OFCMS version 1.1.3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Missing Authorization
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ofcms