CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

766 matches found

0day.today•added 2018/10/17 12:0 a.m.•24 views

Time and Expense Management System 3.0 - CSRF (Add Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: Time and Expense Management System 3.0 - Cross-Site Request Forgery Add Admin Exploit Author: Ihsan Sencan Vendor Homepage: http://www.initechs.com/ Software Link: http://sourceforge.net/projects/tems/files/latest Version: 3.0...

0.1AI score

Exploits0

Exploit DB•added 2018/10/17 12:0 a.m.•93 views

Time and Expense Management System 3.0 - Cross-Site Request Forgery (Add Admin)

Exploit Title: Time and Expense Management System 3.0 - Cross-Site Request Forgery Add Admin Dork: N/A Date: 2018-10-17 Exploit Author: Ihsan Sencan Vendor Homepage: http://www.initechs.com/ Software Link: http://sourceforge.net/projects/tems/files/latest Version: 3.0 Category: Webapps Tested on:...

7AI score

Exploits0

0day.today•added 2018/10/15 12:0 a.m.•16 views

Academic Timetable Final Build 7.0b - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: Academic Timetable Final Build 7.0b - Cross-Site Request Forgery Add Admin Dork: N/A Date: 2018-10-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://geoffpartridge.net/ Software Link:...

7.1AI score

Exploits0

Exploit DB•added 2018/10/15 12:0 a.m.•535 views

Academic Timetable Final Build 7.0b - Cross-Site Request Forgery (Add Admin)

Exploit Title: Academic Timetable Final Build 7.0b - Cross-Site Request Forgery Add Admin Dork: N/A Date: 2018-10-13 Exploit Author: Ihsan Sencan Vendor Homepage: http://geoffpartridge.net/ Software Link: https://sourceforge.net/projects/timetableacademic/files/latest/download Version: 7.0a-7.0b...

7.4AI score

Exploits0

exploitpack•added 2018/10/05 12:0 a.m.•27 views

Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery (Add Admin)

Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery Add Admin Exploit Title: Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery Add Admin Author: Cakes Discovery Date: 2018-10-01 Vendor Homepage: http://www.netis-systems.com Software Link:...

0.2AI score

Exploits0

Packet Storm•added 2018/10/05 12:0 a.m.•25 views

Netis ADSL Router DL4322D RTK 2.1.1 Cross Site Request Forgery

Exploit Title: Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery Add Admin Author: Cakes Discovery Date: 2018-10-01 Vendor Homepage: http://www.netis-systems.com Software Link: http://www.netis-systems.com/Home/detail/id/74.html Tested Version: RTK 2.1.1 Tested on OS: Kali Linux CV...

0.1AI score

Exploits0

0day.today•added 2018/10/05 12:0 a.m.•25 views

Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery (Add Admin) Vulnerabilities

Exploit for hardware platform in category web applications Exploit Title: Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery Add Admin Author: Cakes Vendor Homepage: http://www.netis-systems.com Software Link: http://www.netis-systems.com/Home/detail/id/74.html Tested Version: RTK...

0.4AI score

Exploits0

Exploit DB•added 2018/10/05 12:0 a.m.•29 views

Netis ADSL Router DL4322D RTK 2.1.1 - Cross-Site Request Forgery (Add Admin)

7.4AI score

Exploits0

0day.today•added 2018/08/28 12:0 a.m.•30 views

Gleez CMS 1.2.0 - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: Gleez CMS 1.2.0 - Cross-Site Request Forgery Add Admin Exploit Author: GunEggWang Vendor Homepage: https://gleezcms.org/ Software Link: https://github.com/gleez/cms Version: 1.2.0 CVE : CVE-2018-15845 Description: There is a CSR...

0.2AI score0.02331EPSS

Exploits4

0day.today•added 2018/08/28 12:0 a.m.•45 views

RICOH MP C4504ex Printer - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for hardware platform in category web applications Exploit Title: RICOH MP C4504ex Printer - Cross-Site Request Forgery Add Admin Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link :...

0.7AI score0.02505EPSS

Exploits5

exploitpack•added 2018/08/27 12:0 a.m.•33 views

RICOH MP C4504ex Printer - Cross-Site Request Forgery (Add Admin)

RICOH MP C4504ex Printer - Cross-Site Request Forgery Add Admin Exploit Title: RICOH MP C4504ex Printer - Cross-Site Request Forgery Add Admin Date: 2018-08-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link :...

6.8CVSS0.5AI score0.02505EPSS

Exploits5

Packet Storm•added 2018/08/27 12:0 a.m.•46 views

RICOH MP C4504ex Cross Site Request Forgery

Exploit Title: RICOH MP C4504ex Printer - Cross-Site Request Forgery Add Admin Date: 2018-08-21 Exploit Author: Ismail Tasdelen Vendor Homepage: https://www.ricoh.com/ Hardware Link :...

0.7AI score0.02505EPSS

Exploits5

Exploit DB•added 2018/08/27 12:0 a.m.•58 views

Gleez CMS 1.2.0 - Cross-Site Request Forgery (Add Admin)

Exploit Title: Gleez CMS 1.2.0 - Cross-Site Request Forgery Add Admin Date: 2018-08-24 Exploit Author: GunEggWang Vendor Homepage: https://gleezcms.org/ Software Link: https://github.com/gleez/cms Version: 1.2.0 CVE : CVE-2018-15845 Description: There is a CSRF vulnerability that can add an...

8.8CVSS8.8AI score0.02331EPSS

Exploits4

Exploit DB•added 2018/08/24 12:0 a.m.•62 views

Vox TG790 ADSL Router - Cross-Site Request Forgery (Add Admin)

Title: Vox TG790 ADSL Router - Cross-Site Request Forgery Add Admin Author: Cakes Exploit Date: 2018-08-01 Vendor: Vox Telecom Link: https://www.vox.co.za/ Firmware Version: 6.2.W.1 CVE: N/A Description Due to improper session management low privilege users are able to create administrator accoun...

7.4AI score

Exploits0

exploitpack•added 2018/08/06 12:0 a.m.•30 views

onArcade 2.4.2 - Cross-Site Request Forgery (Add Admin)

onArcade 2.4.2 - Cross-Site Request Forgery Add Admin Exploit Title: Cross-Site Request Forgery Add Admin Google Dork: Powered by onArcade v2.4.2 Date: 2018/August/4 Author: r3m0t3nu11Zero-way Software Link: "http://www.onarcade.com" Version: "Uptodate" the appilication is vulnerable to CSRF atta...

0.4AI score

Exploits0

0day.today•added 2018/08/06 12:0 a.m.•67 views

onArcade 2.4.2 - Cross-Site Request Forgery (Add Admin) Vulnerability

Exploit for php platform in category web applications Exploit Title: Cross-Site Request Forgery Add Admin Google Dork: Powered by onArcade v2.4.2 Author: r3m0t3nu11Zero-way Software Link: "http://www.onarcade.com" Version: "Uptodate" the appilication is vulnerable to CSRF attack No CSRF token in...

0.1AI score

Exploits0

Exploit DB•added 2018/08/06 12:0 a.m.•46 views

onArcade 2.4.2 - Cross-Site Request Forgery (Add Admin)

Exploit Title: Cross-Site Request Forgery Add Admin Google Dork: Powered by onArcade v2.4.2 Date: 2018/August/4 Author: r3m0t3nu11Zero-way Software Link: "http://www.onarcade.com" Version: "Uptodate" the appilication is vulnerable to CSRF attack No CSRF token in place meaning that if an admin use...

7.4AI score

Exploits0

CNVD•added 2018/07/25 12:0 a.m.•2 views

BageCMS Cross-Site Request Forgery Vulnerability

BageCMS is a cross-platform content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in the index.php?r=admini/admin/create URL in BageCMS version 3.1.3. A remote attacker can exploit the vulnerability to add a backend administrator account...

8.8CVSS8.8AI score0.00523EPSS

Exploits1References1