| Vendor | Products | CVEs | KEV | Avg EPSS | Worst Severity |
|---|
| 1 | 6 | 0 | 17.8% | HIGH |
| CVE ID | Description | Severity | CVSS | KEV | EPSS | Published | |
|---|
| CVE-2024-40039 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userGroup_deal.php?mudi=del | HIGH | 8.8 | — | 21.2% | Jul 9, 2024 | |
| CVE-2024-40037 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userScore_deal.php?mudi=del | HIGH | 8.8 | — | 21.2% | Jul 9, 2024 | |
| CVE-2024-40034 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userLevel_deal.php?mudi=del | HIGH | 8.8 | — | 21.2% | Jul 9, 2024 | |
| CVE-2024-36669 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/type_deal.php?mudi=add. | HIGH | 8.8 | — | 14.2% | Jun 5, 2024 | |
| CVE-2024-36668 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/type_deal.php?mudi=del | HIGH | 8.8 | — | 13.7% | Jun 5, 2024 | |
| CVE-2024-36667 | idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/idcProType_deal.php?mudi=add&nohrefStr=close | HIGH | 8.8 | — | 15.1% | Jun 5, 2024 | |