25 matches found
CVE-2020-10482
CSRF in admin/add-template.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new article template via a crafted request...
EUVD-2020-2935
Malware in sbrugna...
EUVD-2020-2948
Malware in sbrugna...
EUVD-2022-42872
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-3501
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Article template contents with sensitive data could be accessed from agents without permissions. CVE-2022-3501 Note that Nessus relies on the presence of the...
MAL-2024-12292 Malicious code in instaread (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 792748013463fb0303ff6033b47dcb48c23dc944d5075a8859b6997eafd47a56 The file bc2556d1c1ea2a2d00.js contains an AdWare LNKR, this file is included in readarticle.html template and effectively used when the user requests to see t...
PT-2024-37978 · Dedecms · Dedecms
Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7.114 Description: A critical issue has been found in DedeCMS, affecting an unknown part of the file article template rand.php. This issue leads to code injection and can be initiated remotely. The exploit has been disclosed...
Desdev DedeCMS 安全漏洞
DedeCMS is a popular content management system widely used to create and manage website content for a variety of application scenarios such as corporate websites and personal blogs. A code injection vulnerability exists in the articletemplaterand.php file in DedeCMS version 5.7.114. The...
CVE-2022-3501
Article template contents with sensitive data could be accessed from agents without permissions...
CVE-2022-3501
Article template contents with sensitive data could be accessed from agents without permissions...
UBUNTU-CVE-2022-3501
Article template contents with sensitive data could be accessed from agents without permissions...
CVE-2022-3501
Article template contents with sensitive data could be accessed from agents without permissions...
CVE-2022-3501 Information exposure of template content due to missing check of permissions
Article template contents with sensitive data could be accessed from agents without permissions...
CVE-2022-3501 Information exposure of template content due to missing check of permissions
Article template contents with sensitive data could be accessed from agents without permissions...
PT-2022-22487 · Accessing Template Content Without Permissions +3 · Otrs +1
Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The issue allows article template contents with sensitive data to be accessed from agents without proper permissions. Recommendations: At the moment, there is no information about a newer...
CVE-2020-10492
CSRF in admin/manage-templates.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete an article template via a crafted request...
CVE-2020-10495
CSRF in admin/edit-template.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to edit an article template, given the id, via a crafted request...
CVE-2020-10482
CSRF in admin/add-template.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new article template via a crafted request...
Cross site request forgery (csrf)
CSRF in admin/add-template.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new article template via a crafted request...
CVE-2020-10492
The CVE affects Chadha PHPKB Standard Multi-Language version 9. The vulnerability is a CSRF weakness exploitable via requests to the admin/manage-templates.php endpoint, enabling an attacker to delete an article template. The root cause is insufficient CSRF protection on that endpoint, allowing u...