9 matches found
Cross site request forgery (csrf)
School Management Software PHP/mySQL through 2019-03-14 allows officeadmin/?action=addadmin CSRF to add an administrative user...
CVE-2019-9870
CVE-2019-9870 affects the w8tcha CKEditor oEmbed plugin prior to 2019-03-14. The vulnerability stems from how plugin.js mishandles SCRIPT elements, enabling a NETWORK-exposed issue with LOW attack complexity and no required user interaction. NVD records CVSS v3.0 base score 9.8 (CRITICAL) with HI...
CVE-2018-12198
creationtimestamp| type| source ---|---|--- 2019-03-14 23:20:07+00:00| seen| https://t.me/cibsecurity/3138...
CVE-2018-12209
creationtimestamp| type| source ---|---|--- 2019-03-14 23:19:53+00:00| seen| https://t.me/cibsecurity/3129...
CVE-2018-12210
creationtimestamp| type| source ---|---|--- 2019-03-14 23:19:52+00:00| seen| https://t.me/cibsecurity/3128...
CVE-2018-12212
creationtimestamp| type| source ---|---|--- 2019-03-14 23:19:50+00:00| seen| https://t.me/cibsecurity/3126...
CVE-2018-12215
creationtimestamp| type| source ---|---|--- 2019-03-14 23:19:47+00:00| seen| https://t.me/cibsecurity/3123...
CVE-2018-20801
creationtimestamp| type| source ---|---|--- 2019-03-14 19:19:35+00:00| seen| https://t.me/cibsecurity/3118...
CVE-2018-12216
creationtimestamp| type| source ---|---|--- 2019-03-14 11:58:42+00:00| seen| https://t.me/SecLabNews/4475...