Lucene search
K

5 matches found

NVD
NVD
added 2026/06/17 3:17 p.m.18 views

CVE-2026-54415

Missing Authorization in the server management routes routes/admin.php in Azuriom Azuriom CMS before 1.2.11 on all platforms allows an authenticated attacker with the admin.access permission to create AzLink server tokens and take over non-admin user accounts by changing their passwords and email...

8.6CVSS0.00348EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/06/17 2:4 p.m.29 views

CVE-2026-54415 Broken Access Control in Azuriom CMS Server Routes Allows Account Takeover

Missing Authorization in the server management routes routes/admin.php in Azuriom Azuriom CMS before 1.2.11 on all platforms allows an authenticated attacker with the admin.access permission to create AzLink server tokens and take over non-admin user accounts by changing their passwords and email...

8.6CVSS0.00348EPSS
Exploits1References3
CVE
CVE
added 2026/06/17 2:4 p.m.16 views

CVE-2026-54415

CVE-2026-54415 is a broken access control issue in Azuriom CMS before 1.2.11. An authenticated user with the admin.access permission can abuse server-management routes to create AzLink server tokens and take over non-admin user accounts by changing passwords and emails. The vulnerability exists i...

8.6CVSS5.3AI score0.00348EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/17 2:4 p.m.10 views

EUVD-2026-37721

Missing Authorization in the server management routes routes/admin.php in Azuriom Azuriom CMS before 1.2.11 on all platforms allows an authenticated attacker with the admin.access permission to create AzLink server tokens and take over non-admin user accounts by changing their passwords and email...

8.6CVSS5.3AI score0.00348EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.16 views

PT-2026-50444

Name of the Vulnerable Software and Affected Versions Azuriom CMS versions prior to 1.2.11 Description Missing authorization in the server management routes allows an authenticated attacker with the admin.access permission to create AzLink server tokens. This can lead to the takeover of non-admin...

8.6CVSS5.2AI score0.00348EPSS
Exploits1References5
Rows per page
Query Builder