thinkcmf/thinkcmf Security Advisories for 5.1.x-dev (3)
-
[HIGH] ThinkCMF Cross Site Request Forgery (CSRF) vulnerability
PKSA-5gts-xk32-3z9f CVE-2022-40489 GHSA-6xw3-cpqj-8mxr
Affected version: <6.0.8
Reported by:
GitHub -
[MEDIUM] ThinkCMF Stored Cross-Site Scripting (XSS)
PKSA-8j24-hmmb-s5br CVE-2022-40849 GHSA-m9mf-rqx6-2xpc
Affected version: <6.0.8
Reported by:
GitHub -
[MEDIUM] ThinkCMF Cross Site Request Forgerly (CSRF) vulnerability
PKSA-mk69-nwc6-yt4m CVE-2020-18151 GHSA-842m-vp3r-qwwr
Affected version: <6.0.8
Reported by:
GitHub