Lucene search
K

276 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/31 12:0 a.m.11 views

Panasonic WV-S2231L Camera Denial of Service (CVE-2020-29194)

Panasonic Security System WV-S2231L 4.25 allows a denial of service of the admin control panel which will require a physical reset to restore administrative control via Randomnum=99AC8CEC6E845B28&mode=1 in a POST request to the cgi-bin/setfactory URI. This plugin only works with Tenable.ot. Pleas...

7.5CVSS7.3AI score0.012EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/11/02 12:0 a.m.11 views

PT-2023-25636 · Unknown · Boomerang Parental Control

Name of the Vulnerable Software and Affected Versions: Boomerang Parental Control application versions prior to 13.83 for Android Description: An issue was discovered in the Boomerang Parental Control application where the app is missing the android:allowBackup="false" attribute in the manifest...

4.6CVSS7AI score0.00538EPSS
Exploits2References10
Microsoft KB
Microsoft KB
added 2023/10/10 7:0 a.m.975 views

Updates for Skype for Business Server 2019 (KB4470124)

Updates for Skype for Business Server 2019 KB4470124 This article specifies the applicability of Microsoft Skype for Business Server 2019 updates for each server role. Note: Skype for Business Server 2019, August 2025 update includes critical security updates for the Skype meetings application...

7.2CVSS7.8AI score0.90353EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2023/09/20 9:15 p.m.5 views

CVE-2023-42321

Cross Site Request Forgery CSRF vulnerability in icmsdev iCMSv.7.0.16 allows a remote attacker to execute arbitrary code via the user.admincp.php, members.admincp.php, and group.admincp.php files...

8.8CVSS6.2AI score0.00364EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/09/20 12:0 a.m.31 views

CVE-2023-42321

Cross Site Request Forgery CSRF vulnerability in icmsdev iCMSv.7.0.16 allows a remote attacker to execute arbitrary code via the user.admincp.php, members.admincp.php, and group.admincp.php files...

9.2AI score0.00364EPSS
Exploits0References2
OSV
OSV
added 2023/09/16 1:15 a.m.4 views

CVE-2023-39777

A cross-site scripting XSS vulnerability in the Admin Control Panel of vBulletin 5.7.5 and 6.0.0 allows attackers to execute arbitrary web scripts or HTML via the /login.php?do=login url parameter...

5.4CVSS5.9AI score0.00386EPSS
Exploits1References1
NVD
NVD
added 2023/09/16 1:15 a.m.14 views

CVE-2023-39777

A cross-site scripting XSS vulnerability in the Admin Control Panel of vBulletin 5.7.5 and 6.0.0 allows attackers to execute arbitrary web scripts or HTML via the /login.php?do=login url parameter...

5.4CVSS5.4AI score0.00386EPSS
Exploits1References1
CVE
CVE
added 2023/09/16 12:0 a.m.47 views

CVE-2023-39777

CVE-2023-39777 is a documented XSS vulnerability in the Admin Control Panel of vBulletin 5.7.5 and 6.0.0, exploitable via the /login.php?do=login URL parameter. The issue is caused by a cross-site scripting flaw that allows an attacker to run arbitrary web scripts or HTML in the context of an aff...

5.4CVSS5.3AI score0.00386EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/16 12:0 a.m.15 views

CVE-2023-39777

A cross-site scripting XSS vulnerability in the Admin Control Panel of vBulletin 5.7.5 and 6.0.0 allows attackers to execute arbitrary web scripts or HTML via the /login.php?do=login url parameter...

5.9AI score0.00386EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/09/16 12:0 a.m.25 views

CVE-2023-39777

A cross-site scripting XSS vulnerability in the Admin Control Panel of vBulletin 5.7.5 and 6.0.0 allows attackers to execute arbitrary web scripts or HTML via the /login.php?do=login url parameter...

5.5AI score0.00386EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/08/10 8:15 p.m.6 views

CVE-2023-39805

iCMS v7.0.16 was discovered to contain a SQL injection vulnerability via the where parameter at admincp.php...

9.8CVSS7.4AI score0.00504EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2023/08/07 12:0 a.m.454 views

Datalife Engine 10 SQL Injection

==================================================================================================================================== | Title : Datalife Engine v10 ir SQl injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 64.0.2...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/03 12:0 a.m.5 views

PT-2023-14787 · Mybb · Mybb

Name of the Vulnerable Software and Affected Versions: MyBB versions prior to 1.8.33 Description: The issue allows remote authenticated users with high privileges to achieve local file inclusion and execution through the Admin CP Languages module, due to a Directory Traversal vulnerability...

7.2CVSS6.8AI score0.01497EPSS
Exploits0References6
OSV
OSV
added 2022/11/22 12:15 a.m.5 views

CVE-2022-43709

MyBB 1.8.31 has a SQL injection vulnerability in the Admin CP's Users module allows remote authenticated users to modify the query string via direct user input or stored search filter settings...

4.9CVSS5.9AI score0.00645EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/11/21 12:0 a.m.6 views

MyBB SQL注入漏洞

MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is easy to use, supports multiple languages, scalable and so on. A SQL injection vulnerability exists in MyBB version 1.8.31, which originates from a cross-site scripting...

4.9CVSS5.3AI score0.00645EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/11/21 12:0 a.m.8 views

CVE-2022-43709

MyBB 1.8.31 has a SQL injection vulnerability in the Admin CP's Users module allows remote authenticated users to modify the query string via direct user input or stored search filter settings...

5.5AI score0.00645EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/10/13 12:0 a.m.6 views

iCMS 代码问题漏洞

iCMS is a software application. An efficient and simple content management system built with PHP and MySQL. A security vulnerability exists in iCMS version v7.0.16, which originates from a server-side request forgery SSRF contained in the url parameter via admincp.php...

9.8CVSS8.4AI score0.0089EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/10/13 12:0 a.m.7 views

CVE-2022-41496

iCMS v7.0.16 was discovered to contain a Server-Side Request Forgery SSRF via the url parameter at admincp.php...

9.7AI score0.0089EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/06/06 2:15 p.m.3 views

CVE-2022-30860

FUDforum 3.1.2 is vulnerable to Remote Code Execution through Upload File feature of File Administration System in Admin Control Panel...

7.2CVSS7.2AI score0.22985EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/06/06 2:15 p.m.4 views

CVE-2022-30863

FUDForum 3.1.2 is vulnerable to Cross Site Scripting XSS via pagetitle param in Page Manager in the Admin Control Panel...

4.8CVSS5.8AI score0.00534EPSS
Exploits1References2
Rows per page
Query Builder