A Cross-Site Request Forgery (CSRF)... CVE-2024-35475

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

A Cross-Site Request Forgery (CSRF) vulnerability was discovered in OpenKM Community Edition on or before version 6.3.12. The vulnerability exists in /admin/DatabaseQuery, which allows an attacker to manipulate a victim with administrative privileges to execute arbitrary SQL commands.

0%
暂无可用Exp或PoC
当前有0条受影响产品信息