Cross Site Request Forgery (CSRF) vulnerability in beescms v4 allows attackers to delete the administrator account via crafted request to...
6.5CVSS
6.5AI Score
0.001EPSS
BEESCMS v4.0 was discovered to contain an arbitrary file upload vulnerability via the component /admin/upload.php. This vulnerability allows attackers to execute arbitrary code via a crafted image...
8.8CVSS
8.9AI Score
0.002EPSS
BEESCMS 4.0 has a CSRF vulnerability to add arbitrary VIP accounts via the admin/admin_member.php?action=add&nav=add_web_user&admin_p_nav=user...
8.8CVSS
8.6AI Score
0.001EPSS
In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to...
8.8CVSS
8.5AI Score
0.002EPSS
BEESCMS 4.0 has a CSRF vulnerability to add an administrator account via the admin/admin_admin.php?nav=list_admin_user&admin_p_nav=user...
8.8CVSS
8.6AI Score
0.001EPSS