Critical Alert

CVE-2026-50751 - Critical Check Point VPN Exploit Discovered Active in the Wild. View Threat Details →
Powered by CVE WATCHTOWER
×
June 10, 2026

CVE Watchtower


← Back to CVE List

CVE-2026-39170NVD

Vulnerability Summary

SemCms 5.0 is vulnerable to Cross Site Request Forgery (CSRF) via crafted POST request to /admin/semcms_user.php.
Severity Level
MEDIUM(6.3)
Published Date
Jun 9, 2026
Last Modified
Jun 9, 2026
Exploitation Status
????
EPSS Score (30-Day)
0.02%Probability
Root Weakness (CWE)
CWE-352: Cross-Site Request Forgery (CSRF) β†—
The web application does not sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
CVSS v3.1 Base Metrics
Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredLow
User InteractionNone
ScopeUnchanged
ConfidentialityLow
IntegrityLow
AvailabilityLow

External References