105 matches found
CVE-2019-25242
FaceSentry Access Control System 6.4.8 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to change administrator passwords, add new admin users, or open access control doors by...
CVE-2019-25242 FaceSentry Access Control System 6.4.8 Cross-Site Request Forgery via Web Interface
FaceSentry Access Control System 6.4.8 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages to change administrator passwords, add new admin users, or open access control doors by...
EUVD-2019-17827
Malware in sbrugna...
EUVD-2007-5887
Malware in sbrugna...
EUVD-2022-49295
Malicious code in bioql PyPI...
CVE-2023-26953
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Add Administrator module...
HYSCALE System 1.9 Add Administrator / Cross Site Request Forgery
============================================================================================================================================= | Title : HYSCALE System v1.9 CSRF add admin Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64...
PT-2024-31521 · Skysystem · Skysystem Arfa-Cms
Name of the Vulnerable Software and Affected Versions: SkySystem Arfa-CMS versions prior to 5.1.3124 Description: A cross-site request forgery CSRF vulnerability in the admin panel allows remote attackers to add a new administrator, leading to escalation of privileges. This issue enables attacker...
Xzengine 1.7 Add Administrator
==================================================================================================================================== | Title : xzengine v.1.7 Add Admin Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 66.0.332-bit | | Vendo...
Ciuis CRM 1.0.8 Add Administrator
==================================================================================================================================== | Title : Ciuis™ CRM v1.0.7 add administrator Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 66.0.264-bi...
Advanced Testimonials Manager 5.5 Add Administrator
==================================================================================================================================== | Title : Advanced Testimonials Manager v5.5 Reinstall Add Admin Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla...
KesionCMS X 9.5 Add Administrator
==================================================================================================================================== | Title : KesionCMS X9.5 Reinstall Add Admin Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 105.0.32-bit...
CVE-2023-26953
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Add Administrator module...
CVE-2023-26953
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Add Administrator module...
Cross site scripting
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Add Administrator module...
CVE-2023-26953
OneKeyAdmin v1.3.9 contains a stored XSS vulnerability in the Add Administrator module. The CVE describes impact limited to confidentiality and integrity (both Low) with no availability impact; attack vector is NETWORK, but requires LOW attack complexity, HIGH privileges, and user interaction. A ...
CVE-2023-26953
onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Add Administrator module...
CVE-2021-36444
Cross Site Request Forgery CSRF vulnerability in imcat 5.4 allows remote attackers to gain escalated privileges via flaws one time token generation on the add administrator page...
CVE-2021-36444
Cross Site Request Forgery CSRF vulnerability in imcat 5.4 allows remote attackers to gain escalated privileges via flaws one time token generation on the add administrator page...
CVE-2022-46491
A Cross-Site Request Forgery CSRF vulnerability in the Add Administrator function of the default version of nbnbk allows attackers to arbitrarily add Administrator accounts...